• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

How to stop Squid proxy server from monitoring the inside LAN activity

Scheduled Pinned Locked Moved Cache/Proxy
4 Posts 3 Posters 1.2k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • A
    Albert_aw
    last edited by Dec 6, 2016, 3:34 PM

    Hey,
    I'm having a problem with this Squid proxy guy. I have installed it and set it up like the guides say, nothing hard everything works fine and the lite squid monitor is nice monitoring everything. But the problem is literally that he monitors "everything", even the internal activities of the hosts and servers that are communicating between each others. like hey, this pc is transferring files to that server, what the hell are you monitoring?
    I cannot detect how is he doing that, and I need your help guys. tell me what configuration is required from me to clarify the issue here, because my aim is that I want to only monitor the computers (users) going through the firewall to access the internet, not the local network.
    Thank you.

    1 Reply Last reply Reply Quote 0
    • K
      KOM
      last edited by Dec 6, 2016, 6:49 PM

      Are you sure this is what's happening?  Squid, when running on transparent mode, will intercept all TCP 80/443 traffic and that's it.  Inter-LAN traffic doesn't even hit the firewall unless it's travelling between different interfaces.  I've been running squid & lightsquid for literally years now, and I've never seen anything like what you describe.  What are you looking at that makes you assume squid is even involved here?

      1 Reply Last reply Reply Quote 0
      • C
        C0RR0SIVE
        last edited by Dec 7, 2016, 5:17 AM

        Not possible unless you have a misconfigured network, either physically or logically.  That aside, SQUID ignores everything outside of 80/443/3218

        1 Reply Last reply Reply Quote 0
        • A
          Albert_aw
          last edited by Dec 7, 2016, 7:48 AM

          @KOM:

          Are you sure this is what's happening?  Squid, when running on transparent mode, will intercept all TCP 80/443 traffic and that's it.  Inter-LAN traffic doesn't even hit the firewall unless it's travelling between different interfaces.  I've been running squid & lightsquid for literally years now, and I've never seen anything like what you describe.  What are you looking at that makes you assume squid is even involved here?

          My squid is not on transparent mode, I've run a group policy management to distribute proxies into the domain devices. Well if that has any effect on the monitor then it seems that we have a major problem.
          If not, well I guess C0RR0SIVE might be right, I need to re-check my network schema.

          1 Reply Last reply Reply Quote 0
          1 out of 4
          • First post
            1/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received