We're evaluating ASL 6, we're an IT company who do a lot of development. Our coders have a lot of problems if I run the ASL proxy in transparent mode with no paranoia settings.
They can't authenticate to servers with Frontpage Extensions, they also need to connect to a number of web servers on a variety of unusual ports.
Switching the proxy off and running packet filters passing *all* traffic from our Internal to these machines fixes the problem.
But obviously we'd like to run with a transparent proxy if possible.
I know the proxy component of ASL is Squid which I know is capable of handling this with the proper settings but the control we have over Squid with WebAdmin is pretty basic and I haven't found a combination of settings to solve this.
As I see it I have three options;
1) Setup packet filtering rules that will bounce all outbound web traffic back to a proxy server on our Internal net which will then be passed thru the firewall. Our own transparent proxy service basically but with the proxy running on a dedicated box. Is this possible ?
2) Maintain the proxy on the ASL box but doing it by hand, which means a seperate procedure / interface to running the ASL box in general. This could be a tricky option coz I'm supposed to hand this over to my clients who could maintain a firewall with an interface like WebAdmin but would struggle configuring Squid by hand.
3) Are there more sophisticated proxy controls somewhere in WebAdmin or a patch / module we could download ? At the moment I'm doing everything from the Proxies --> HTTP menu, am I missing something ?
Thanks for reading.
This thread was automatically locked due to age.
