[ previous ] [ next ] [ threads ]
 From:  Vincent Fleuranceau <vincent at bikost dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Ad Blocking in m0n0wall
 Date:  Wed, 10 Nov 2004 09:14:48 +0100
-------- Original Message --------

> 3) Getting Squid to do it on a dedicated machine is faster. I've an XP1700+
> (hell, it was cheaper than a PIII, even second-hand ones) running as a
> "network services" machine for the sort of things that m0n0 doesn't do -
> that's things like a Squid proxy (the cache is extremely helpful if you've
> lots of client machines accessing similar/the same sites), Samba for a WINS
> server, NTPd for clock updates, etc. etc. Updating the list of blocksites is
> a simple matter of replacing the .acl file I've defined for the task with a
> new one, then telling Squid to reload the config. No restarts of anything
> involved. No downtime. And if a user wants to bypass ad-blocking for any
> site, they simply define it as an exception to the proxy server rules.

This is exactly my point of view: running Squid on another *dedicated* 
and powerful machine (traffic redirection) is the best solution, from afar.

More, this has already been discussed when some of us asked for squid 
integration in m0n0wall. Take a look at the archives...

-- Vincent