View this page in English

Censornet - internet filtering on your terms

BECTA Accredited products VMWare Certified Virtual Appliance Members of the Internet Watch Foundation Shortlisted for the BETT 2008 Awards Computer Security Awards finalist
Chat online now or call +44 (0) 845 230 9590 for help & advice

Search knowledge base

Product specific

Home » Knowledge base » Redirect all web requests through squid because of CensorNet failure

Redirect all web requests through squid because of CensorNet failure

July 19, 2011 • Customer Services       
Synopsis

You need to redirect all users through squid because there is a problem with the CensorNet proxy (fail open)

Article

In rare circumstances, if the proxy is offline (perhaps due to a restore in progress or license issue) then no one will be able to browse the web until the proxy is running again. You can however, redirect all traffic to squid which will allow people to browse the web but they will not be filtered.

To do this, log in to the CensorNet server as root and type:

iptables -t nat -A PREROUTING -p tcp --dport 8080 -j DNAT --to-destination :3128

Try and browse the web. If you get an Access Denied error from squid, you should perform the following steps:

nano /etc/squid/squid.conf

Search for the line that starts "http_access deny all" and put a # in front of it to comment it out. On the line below, enter:

http_access allow all

Save the file with Ctrl+X then Y then Enter. Then you must tell squid to reload its configuration.

If you have Ubuntu 8.04 you can use the following command:

/etc/init.d/squid reload

If you use Ubuntu 10.04 you can use the following command:

service squid reload

Remember to change the squid.conf back to how it was after the proxy comes back online!

Related articles


Last modified on Tue, July 19, 2011 « Back