Suggestions for a Proxy Appliance
Results 1 to 3 of 3

Thread: Suggestions for a Proxy Appliance

  1. #1
    Member
    Join Date
    Feb 2005
    Posts
    45

    Suggestions for a Proxy Appliance

    I'm looking for a painless solution for the following scenario.

    16 PC's available to the general public must have internet access. I've been instructed not to filter content but that traffic should be logged. The logs must be made available in an easy to read format for non-technical management. The location currently has a soho router and an active internet connection.

    I could use one of the boxes as a router or proxy but I am trying to avoid this option (I don't want to be over there isntalling updates)

    Can anyone suggest a hardware appliance with detailed logging capabilities that comes in under $500? A PC can be setup as a syslog server but I would prefer to have a web interface on the appliance itself. If not what is the best alternative? IPTables,Squid,Winproxy?

    Thanks in advance.

  2. #2
    Senior Member
    Join Date
    Jan 2003
    Posts
    3,914
    Hey Hey,

    I'm going to suggest the same solution that I use at home.... It's really quite painless and it's convenient..

    The hardware:
    A Soekris 4501-30 (A compact motherboard + processor setup)... http://www.soekris.com/index.htm - It's soekris part number 10450131 and the final cost is $177USD for the board and the case... It's 133Mhz w/ 64MB RAM... It has 3 Ethernet Ports and a compact flash slot (it also has a 3.3V PCI slot inside)

    The OS:
    m0n0wall.. A FreeBSD variant that's open source. http://m0n0.ch/wall/ It looks traffic in it's web based front-end (last X results (x is customizable) but you can also offload to a syslog server)

    Peace,
    HT
    IT Blog: .:Computer Defense:.
    PnCHd (Pronounced Pinched): Acronym - Point 'n Click Hacked. As in: "That website was pinched" or "The skiddie pinched my computer because I forgot to patch".

  3. #3
    Dissident 4dm1n brokencrow's Avatar
    Join Date
    Feb 2004
    Location
    Shawnee country
    Posts
    1,243
    Quote Originally Posted by stevel
    16 PC's available to the general public must have internet access. I've been instructed not to filter content but that traffic should be logged. The logs must be made available in an easy to read format for non-technical management. The location currently has a soho router and an active internet connection.
    Take a look at ClarkConnect (www.clarkconnect.com). It's a Linux solution
    with numerous features, any of which are optional. It's very easy to config
    and use, very stable, and there's a free version. And you can run it on an
    old piece of hardware.

    Ugh, logfiles. The problem you confront in making logfiles "available in an easy
    to read format" is their sheer volume. You'll need an app like Sawmill (Linux)
    for analysing any logfiles and breaking them down.
    “Everybody is ignorant, only on different subjects.” — Will Rogers

Similar Threads

  1. Proxies
    By CyberGlyph in forum Web Security
    Replies: 38
    Last Post: May 31st, 2005, 05:18 AM
  2. Security Basics by Sharepro
    By Zato in forum Newbie Security Questions
    Replies: 3
    Last Post: December 24th, 2003, 08:25 PM
  3. * Web Based Proxies *
    By FallenZen in forum The Security Tutorials Forum
    Replies: 10
    Last Post: December 1st, 2003, 02:14 AM
  4. Chaining Proxies and Wingates
    By Resolution in forum The Security Tutorials Forum
    Replies: 3
    Last Post: April 3rd, 2002, 03:36 PM
  5. Proxy Tutorial
    By Ennis in forum The Security Tutorials Forum
    Replies: 4
    Last Post: November 28th, 2001, 04:27 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •