Mixed Mode
July 18, 2011 • Customer Services
Synopsis
Most people are aware that the CensorNet can now be used in In-Line or Transparent mode as opposed to the original Sideways mode. This article explains how you can have a mix of clients, some using the CensorNet in Transparent mode whilst others use it in Sideways mode.
Article
You may have requirements whereby you need users to be authenticated in the traditional manner on most of your network, but have areas where you don't really need users to authenticate, but do require to provide filtered connectivity to the Internet. The good news is that this is possible with a little care and attention. This article will explain what is required.As a first step, you should run the setup program (log into the command line as root and type setup) and configure the CensorNet's network into In-line (Transparent) mode. Remember, you should be at the CensorNet's console to do this, do not do it via an SSH connection.
Having configured your CensorNet into In-line mode, recall that this will enforce SSL Intercept mode. Read the instructions in the SSL Certificate Installation Guide to ensure that all of the browsers on your network have the CensorNet's certificate installed.
Those workstations that will be using the CensorNet in transparent mode should have their gateway set to point to the CensorNet. They do not need to have their browser's proxy settings configured. These workstations need to be imported into the CensorNet in one (or more) groups where the Authentication Flag is set to "No".
Those workstations that will be using the CensorNet in traditional "sideways" mode should have their gateway set to point to your firewall or router. The browsers on these workstations should have their proxy settings configured to point to port 8080 of the CensorNet. They should be imported into one (or more) workstation groups where the Authentication Flag is set to "Yes".
Related articles
