This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

About Surf Protection + Radius Server

Dear Sr.:

(ASL v4.002 Enterprise + Surf Protection + Radius Server)

I have two problems:

- I have noticed that when I change to a user froman profile to new one profile this user maintains the restrictions of the previous profile.  Why?

- When defining a new profile for a group of users, these users can navigate thru the supposed bloqued sites and only the profile is applied when the place is reloaded.   This even happens until in new workstations (no older cache information)

Can somebody help me?

Thank you, Hector M. Jacas

This thread was automatically locked due to age.

Parents

0 Vukasin over 22 years ago
Here are the answers to your problems:
  - the IE sometimes caches the "blocked" page and does not resend the request to the HTTP proxy. The simplest way to deal with this is to empty the IE offline content. The same goes for Netscape.
   - This behaviour is caused by a fetching timeout. You probably have a slow responce network connection to the Cobion servers. You can raise the timeout value by adding the following line to the /var/chroot-squid/etc/filter.conf
Code:

FETCH_TIMEOUT 3000

the number represents the number of miliseconds before the request times out and the request is tagged as uncategorized. If the reply from the Cobion server arrives after the timeout the result is cached so when you refresh the categorization is alredy there.
Cancel
Vote Up 0 Vote Down

Cancel
0 jacas over 22 years ago in reply to Vukasin

According to the results of the tests that I have carried out, the problem is solved when cleaning the information contained in the proxy's cache.

The tests were the following ones:

To an user (Usr1) belonging to a profile that anly could visit the financial sites it was eliminated and added to the group belonging to a profile of free access to the web (NAS-Identifier=http). We used the same username and password for it.

The browser of the user workstation was cleaned the cache and offline conten. To practical effects, reference information about previously visited sites didn't exist any more.

When the user Usr1 authenticates before the proxy to navigate to sourceforge.net (for example) he is informed that that site was blocked him.

This situation repeated with as much as I siege it was outside of the reach of its previous profile.

Only the user Usr1 could navigate freely for the web when you proceeded to clean the proxy cache (Clear HTTP proxy cache).

Should this be now, this way?  this their behavior should be?  will it be possible that some detail I passing for high?

Thank you,

Jacas
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 jacas over 22 years ago in reply to Vukasin

According to the results of the tests that I have carried out, the problem is solved when cleaning the information contained in the proxy's cache.

The tests were the following ones:

To an user (Usr1) belonging to a profile that anly could visit the financial sites it was eliminated and added to the group belonging to a profile of free access to the web (NAS-Identifier=http). We used the same username and password for it.

The browser of the user workstation was cleaned the cache and offline conten. To practical effects, reference information about previously visited sites didn't exist any more.

When the user Usr1 authenticates before the proxy to navigate to sourceforge.net (for example) he is informed that that site was blocked him.

This situation repeated with as much as I siege it was outside of the reach of its previous profile.

Only the user Usr1 could navigate freely for the web when you proceeded to clean the proxy cache (Clear HTTP proxy cache).

Should this be now, this way?  this their behavior should be?  will it be possible that some detail I passing for high?

Thank you,

Jacas
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data