Use proxy with different authentication

webproxy
v7

(Andrea) #1

NethServer Version: NethServer release 7.3.1611
Module: web proxy

Hi, i use nethserver as proxy for my enviroment onclassic 3128 port and i have only 1 nic connected to lan.
Now i want to create a rule on our firewall (mikrotik) to forward all traffic on port 80 and 443 to an interface on mikrotik connected with nethserver

the configuration is the same
http://artica-proxy.com/mikrotik-transparent-web-proxy-setup-both-httphttps/

i want to use a dmz interface that in already configured on my mikrotik and the nethserver will ahve 2 interfaces, 1 for lan (that i will use for manage it and for binding AD user/group) and 1 for dmz that forward traffic internet.

My question is, can i configure squid with 2 authentication? the firt is ntlm and if this fail i will use an ip address ACL.

thank you

Andrea


(Markus Neuberger) #2

Hi @malmsteen,

I am afraid that’s not possible because the client decides the auth to use:

http://squid-web-proxy-cache.1019090.n4.nabble.com/Understanding-Fallback-Authentication-td4684926.html

You may exclude clients not working from proxy:

http://docs.nethserver.org/en/v7/web_proxy.html#bypass