Proxies overview

Every dfirewall setup run two instances of squid proxy. One instance should query for authentication and the other one should work as a transparent proxy. That is set this way to avoid the transparent instance do not query to authentication thuns only allowing or blocking traffic.

By default the authenticated one run on port 10081 and the transparent one run on port 10082.

The transparent instance

It uses a the cf_transparent_proxy_allow parameter to wich it will block or allow traffic by default. If cf_transparent_proxy_allow is set to on, then the default rull should be allow traffic through it, otherwise it will deny traffic by default.

to be continued...