Jump to content



Photo

Proxy Server - Monitor Traffic/Log http Access - BASIC

proxy

  • Please log in to reply
9 replies to this topic

#1 xendrome

xendrome

    In God We Trust; All Others We Monitor

  • Tech Issues Solved: 9
  • Joined: 05-December 01
  • OS: Windows 8.1 Pro x64

Posted 05 January 2014 - 20:15

I need a few suggestions on a basic Windows based Proxy Server application. Something similar to WinGate or even more basic.

I really only need it to do 2 functions: 1: Monitor Real-time http/https traffic/pages accesses and 2: Log the traffic to a file.

I don't need any other type of filtering, all of my AV/Spam/Spyware stuff is done at my Sonicwall UTM. And a + would be if said software has AD integration.

I do have Forefront TMG 2010, but honestly it is way more then I need or want to deal with.

I will enable client access through the proxy via GPO.

So, any ideas?


#2 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 85
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 05 January 2014 - 21:09

squid is like the number 1 proxy on the planet.

http://www.squid-cache.org/

As to viewing the log very popular http://lightsquid.sourceforge.net/

#3 OP xendrome

xendrome

    In God We Trust; All Others We Monitor

  • Tech Issues Solved: 9
  • Joined: 05-December 01
  • OS: Windows 8.1 Pro x64

Posted 05 January 2014 - 21:12

squid is like the number 1 proxy on the planet.

http://www.squid-cache.org/

As to viewing the log very popular http://lightsquid.sourceforge.net/


I investigated that earlier, but a lot of the Windows pre-compiled binary URLs were all 404. I'll check again.

#4 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 85
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 05 January 2014 - 21:25

? Its going to be your proxy - why does it have to be windows based? I never understood the mindset I need application X to run on OS Y.. If what your worried about is application X, then run application X on whatever platform it has better support for. Its not like linux or bsd cost money like your windows license do.

Run it on a VM if you don't want to dedicate hardware to a specific OS.

I am quite sure hyperV can run a linux platform that squid could run on.. Or for that matter run an appliance

#5 OP xendrome

xendrome

    In God We Trust; All Others We Monitor

  • Tech Issues Solved: 9
  • Joined: 05-December 01
  • OS: Windows 8.1 Pro x64

Posted 05 January 2014 - 21:57

Well I have a server already running WSUS and TrendMicro Officescan for out Client workstations and was trying to keep it on that with low overhead.

I checked out Squid a bit and the LDAP configuration seems like it might be a pain, any other suggestions?

#6 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 85
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 05 January 2014 - 23:21

Not FREE - there are plenty of proxy solutions out there. In an enterprise they cost money, websense, bluecoat, you say windows version is too much..

Sonicwall has a proxy/content filtering why not just use that?

#7 +snaphat (Myles Landwehr)

snaphat (Myles Landwehr)

    Electrical & Computer Engineer

  • Tech Issues Solved: 29
  • Joined: 23-August 05
  • OS: Win/Lin/Bsd/Osx
  • Phone: dumb phone

Posted 06 January 2014 - 03:43

Your best bet for running any sort of up-to-date copy of squid in windows is to use Cygwin. 



#8 OP xendrome

xendrome

    In God We Trust; All Others We Monitor

  • Tech Issues Solved: 9
  • Joined: 05-December 01
  • OS: Windows 8.1 Pro x64

Posted 06 January 2014 - 14:24

Your best bet for running any sort of up-to-date copy of squid in windows is to use Cygwin. 

 

You know, I got squid working pretty good last night on the Windows server. Problem is, for the life of me I could not get AD intergration to work at all... I tried for at least 2 hours and I could not get a successful response using the built in utilities. And using the same setup/credentials that are verified working on our Sonicwall.



#9 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 85
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 06 January 2014 - 15:16

http://wiki.bitbinar...ted_Squid_Proxy

#10 ndoggfromhell

ndoggfromhell

    Master of the 6th Speed

  • Joined: 20-March 02

Posted 06 January 2014 - 15:40

Not sure your situation with the Sonicwall UTM, but perhaps it's time to look at a better UTM product.  We ditched the Sonicwall about 6 years ago because the URL filtering was terrible, and the logging was essentially worthless.  We went with an Astaro UTM and I have had very little issues with it in our setup.  They have a software version you can install in a VM and test with, the GUI makes it pretty user friendly.  Depending on the size of your setup/organization it can actually be a free product.  





Click here to login or here to register to remove this ad, it's free!