Slashdot Mirror

← Back to Stories (view on slashdot.org)

Web-Based Proxies As Internet Gateways?

Posted by Cliff on from the getting-thru-that-firewall dept.

Tseuq asks: "The company I work for has recently rolled out their first 'official' Intranet. Like most companies, we use a combination of Novell, NT and Unix for our file/print/application duties. We want to allow all users in the company access to certain sites on the Internet (health benefits, 401k plans etc., regardless of whether they have been officially blessed with Internet access. However, we currently use a Novell based proxy/fireall which works well for those with NDS (Novell Directory Services) ID, but there are several people in the company for whom it is not feasable to have such an ID, making authentication into the Novell proxy quite difficult (read: impossible)."

"I attempted to get around this problem using the freely downloadable PERL based CGIProxy 1.3 through NAT, bypassing the Novell proxy but still using the firewall aspect. It's a wonderful script but in its current downloadable form, it doesn't support SSL or Javascript, both of which we need.

My ideal solution is a product like CGIProxy since it would allow pretty much transparent access to the designated sites via links from our Intranet. I have done some more research but have run out of ideas and time and was hoping the Slashdot community could throw some ideas my way.

NT or Freenix solutions are acceptable. I have some coding ability but I am pretty far away from considering myself a programmer so solutions that require a decent amount of recoding probably won't work for me.

Thanks in advance for your help."

1 of 5 comments (clear)

  1. Try NT Proxy by Gazorgan · · Score: 2

    You can us NT Proxy server 2.0 in a non-authentificated mode. Works okay, and the proxy server can be behind the hardware firewall. It can also proxy on the same subnet, but I advise 2 different IP's. I used to have a Border manager setup, and would use the NT proxy server for setups/tests/public access terminals where they didn't login. I also ran cyber-patrol on the NT with no problem. It's not as robust as other's, but you can set it up on a little P200 and it's fine for the users that can't authenticate on NDS. You can also do the 'nix solution, just depends on what ya know. -Bryan

    --
    Little NT, Little Linux, heavy dose of 98SE, Cable Modem, and a firewall and BAM...instant party!