If you can tell us how the proxy and network are set up then we might be
able to help.

What machine(s) connect directly to the internet connection?
Which machine (if any) does DHCP and NAT?
How is the network wired (what machines connect where)?

I'd check the logs on the proxy, and possibly employ a sniffer as a
first step (assuming the configuration is actually sound).

-Adam

Carlos A. Marcano V. wrote:

>
>      Hi folks. I have a situation that is really driving me crazy. A
>friend of mine is trying to manage a little lan at his workplace. It has
>about 10 computers conected using Windoze 95, 98, and XP as the OS4s. He is
>running the web server and uses a proxy to grant the internet acces. Users
>must login through an application called Watchguard to gain acces to
>internet. When somebody tries to get to a not allowable site (like porn
>sites) he gets the "This URL is blocked by the firewall" sign. Everything
>seems to be working fine, except that a user begin to tell him that he
>could get to any site he wanted and my friend could not do anything about
>it. My friend felt confident and told him that was not possible, so they
>started a friendly bet: every Monday and Wednesday the user have to call my
>friend and bring him to his PC and if he shows him any banned site on the
>browser my friend must buy him lunch that day. No "imported sites count"
>(as in a cdrom or floppy or any other media), so they have a gentlemen pact
>on that the site must be opened using my friend4s lan. So far my poor
>friend have had to pay for about a month now. The user told him he will
>tell him the secret next year! so you must imagine how my friend is
>feelling now. Luckily this is just a friendly bet but my friend is
>concerned about the security implications this could bring. I must admit I
>am not capable of doig anything about this because my knowledge in the
>field is very low so I thought maybe any of you guys could help. Thanks in
>advance for your time and help!
>
>Regards,
>
>*Carlos Marcano*
>-Guri, Venezuela-
>
>--
>http://www.piclist.com#nomail Going offline? Don't AutoReply us!
>email listserv@mitvma.mit.edu with SET PICList DIGEST in the body
>
>
>
>
>

--
http://www.piclist.com#nomail Going offline? Don't AutoReply us!
email listserv@mitvma.mit.edu with SET PICList DIGEST in the body