Folks -
I am using a 7.2 box as a proxy/filter using dansguardian in a public library, and it performs great. I would like to start using delay pools, as when the kids get out of school, they come over and clobber our bandwidth.
I can't get delay pools to work because of dansguardian; as far as squid is concerned, it only has one customer coming from 127.0.0.1, so it can't discern who to delay.
I guess I need to have the --enable-follow-x-forwarded-for configure option compiled into squid
Can anybody tell me what the best way to go about this is?
Thanks -
Mark
Here is how I resolved this problem:
You must include the client IP into the header sent to Squid.
To do this you will need to change the following setting in dansguardian.conf to "on" (default is off)
# if on it adds an X-Forwarded-For: <clientip> to the HTTP request
# header. This may help solve some problem sites that need to know the
# source ip. on | off
forwardedfor = on
You should do this using the templates-custom but I will not go into that detail here.
Then in your squid.conf you can identity the IP address by retreiving it from the Header sent from Dansguardian:
acl aclname req_header X-Forwarded-For -i <IP address>
(You will need to change aclname and <IP address>)
Then you can use this to do your pool delays
Again you should do this by using templates-custom.
Hope this helps.
6 Replies
6482 Views