# # Cntlm Authentication Proxy Configuration # # NOTE: all values are parsed literally, do NOT escape spaces, # do not quote. Use 0600 perms if you use plaintext password. # #Username testuser Domain %%nom_domaine_smb #Password password # Use hashes instead (-H) #Workstation netbios_hostname # Should be auto-guessed %for %%num_int in range(1, %%int(%%nombre_interfaces)) %set %%proxy_link = 'adresse_ip_eth' + %%str(%%num_int) + '_proxy_link' %if %%is_defined(%%proxy_link) and not %%is_empty(%%getVar(%%proxy_link)) Proxy %%getVar(%%proxy_link):3128 %end if %end for # # This is the port number where Cntlm will listen # Listen 3127 # # If you wish to use the SOCKS5 proxy feature as well, uncomment # the following option, SOCKS5. It can be used several times # to have SOCKS5 on more than one port or on different network # interfaces (specify explicit source address for that). # # WARNING: The service accepts all requests, unless you use # SOCKS5User and make authentication mandatory. SOCKS5User # can be used repeatedly for a whole bunch of individual accounts. # #SOCKS5Proxy 8010 #SOCKS5User dave:password # # Use -M first to detect the best NTLM settings for your proxy. # Default is to use the only secure hash, NTLMv2, but it is not # as available as the older stuff. # # This example is the most universal setup known to man, but it # uses the weakest hash ever. I won't have it's usage on my # conscience. :) Really, try -M first. # Auth LM #Flags 0x06820000 # # Enable to allow access from other computers Gateway yes NTLMToBasic yes # # Useful in Gateway mode to allow/restrict certain IPs # #Allow 127.0.0.1 #Deny 0/0 # # GFI WebMonitor-handling plugin parameters, disabled by default # #ISAScannerSize 1024 #ISAScannerAgent Wget/ #ISAScannerAgent APT-HTTP/ #ISAScannerAgent Yum/ # # Headers which should be replaced if present in the request # #Header User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows 98) # # Tunnels mapping local port to a machine behind the proxy # #Tunnel 11443:remote.com:443