[squid-users] Alternative ways of tracking users on unauthenticated proxy

James Harper james at ejbdigital.com.au
Mon May 25 10:33:21 UTC 2015


> 
> Hi all,
> 
> 
> I'm setting up a system for using iPads in our school, and I'm stuck a bit on
> tracking what the students are doing on them.
> 
> 
> First up, I reaaly don't want a Pop-up login box from a 407 response from a
> proxy server, so I'm looking for some other way to track who is doing what.
> 
> What i have set up so far is PacketFence with an SSL-bump transparent proxy
> (I've put the CAs o all the ipads) which works well in that users have to log in
> before they get internet access. This works (they get a web page, login and
> get 50 minutes of internet before it disconnects them), but the only way I
> have of tracking users is by working out who was on each ipad (from
> packetfence) then matching it against squid logs, which is messy.
> 

Does packetfence provide a way to query the user that belongs to an IP address?

If so, it might be possible to write a helper that squid can call to obtain the username. And if PacketFence is popular (I'd never heard of it, but that doesn't mean anything), then someone else might have already written one.

James


More information about the squid-users mailing list