I have a situation where I need to set up a domain whitelist and block access to all other sites. The trick now is that the network owner needs to bypass the whitelist on occasion.
Is there a way to to this with ClearOS? If not ClearOS how about another gateways server?
ClearOS is simply a preconfugred Linux distribution - which comes with a web proxy. There's very little information on the site about what the web proxy is and how the system is configured but the following may apply....
If I were starting from scratch then:
1) block all access to the outside world except for the gateway machine, SMTP server and any machinse which have incoming connections from the internet (and disable routing on the these boxes)
2) Install 'squid' on the gateway machine (see this article for an example of a simple authenticated web access setup)
3) configure the browsers to use the squid server as a proxy (or set up a automatic proxy config file)
There's more information about squid here.
C.
ClearOS will allow you to configure multiple policies based on various factors such as user authentication, IP address, and other client factors. You can create a default policy for the company and then use the Dynamic DHCP allocation to place the business owner into a more open zone then all the other users. Your policy for him will apply to his IP address and thereby
To get started with this, click on the 'Select Filter Group' in the content filter and choose, add filter group.
The documentation link on the configuration page will give you specific instruction in the documentation as well as a short tutorial video.