Settings

General

HTTP Proxy

• Bind IP Address: Accept incoming HTTP connections from the network interface with the specified IP address. Leave this to 0.0.0.0 to accept incoming connections from all network interfaces.
• Listen on port: The port number that will be opened for incoming HTTP connections. You can usually leave this to 8080.

SOCKS Proxy

• Bind IP Address: Accept incoming SOCKS connections from the network interface with the specified IP address. Leave this to 0.0.0.0 to accept incoming connections from all network interfaces.
• Listen on port: The port number that will be opened for incoming SOCKS connections. You can usually leave this to 1080.

General Filters

Enables the built-in filters which remove advertisements on web pages and block adult content. You can select what should be used a replacement from the drop down list.

Users

User Authentication

• Force users to logon before they can access the Web: Users will be asked to enter a valid username and password into their web browser before they can access the Internet. Usage statistics will be tracked per user rather than per workstation. You can create user accounts by clicking Add, or alternatively use the NT Authentication option (see below).
  
  You may specify a custom time or bandwidth quota for a user, but you must have bandwidth or time quotas enabled (see Quotas below). If you want to specify a custom quota to a particular workstation, you can the IP address of the workstation as the username and then spefiy the custom quota level.

NT Authentication

• Authenticate logon against this domain: The specified domain will be used to authenticate the username and password entered by the user. Users will be able to logon using their existing Windows logon details to also gain access to the Internet.
• User must be a member of this group: Allows you to specify a group of users who should have Internet access. You can use Windows to create and add users to this group, and then specify the group name here. Only users who are members of the specified group will be authenticated.

Quotas

Allows you to set a limit on how much time or bandwidth each workstation uses on the Internet per day, week, or month. If User Authentication is enabled, then quota limits will be applied to each user, rather than each workstation.

You can set a custom limit for specific users if needed. When you create or edit a user account, you can specify the custom time or bandwidth quota. To specify a custom quota limit for a workstation when User Authentication is not enabled, you need to create a user with the IP address as the username, and then set the custom limit.

Access Rules

Allows you to create rules allowing or blocking access based on a set of criteria. The order of the rules is important; the first rule that matches is applied. If no rules are matched, the default action is to allow access.

• Rule Description: Enter a friendly name or description for this rule, for you reference.
• Workstations: Specify which workstations on your LAN this rule should apply to. You can apply the rule to all workstations, a specific IP address or a range of IP addresses.
• Users: Specify which users this rule should be applied to. You can apply the rule to all users, or include or exclude specific users by typing each username on a seperate line. User Authentication must be enabled for this to work.
• Time: The rule will be enabled only during the times you specified. Select the days and time that the rule should be activated or disabled.
• Web Sites: You may specify certain web sites or URL's that this rule applies to. For example, you can allow access to a specific web site, or block access to ZIP file downloads. See URL Pattern Matching for more information.
• Advanced: Most users will not need to worry about these settings. The rule can be applied to certain HTTP methods or SOCKS connections if needed. You can also apply the rule only if the destination port matches one of the ports listed.
• Action: When the rule is matched, specify what action to take. If you wish to block the request, specify what file should be used as a replacement. For example, you can create your own HTML message, display an image file, or use the default Access Denied message. You could also choose to allow the request but throttle the bandwidth to a certain speed limit. Excluding the request from users quota means the site will not increase the users bandwidth or time usage figures.

Advanced

IP Address Restriction

Specify the range of IP addresses that have access to the WebScout proxy. For example, you may want to limit the use of the proxy to workstations with IP addresses between 192.168.1.10 and 192.168.1.30.

Logging

Enables or disables the access log file. The log shows you what web sites have been visited by which workstation and user at what time. You can also choose to log only blocked requests if preferred. "Use a new log file for each day" means that the date will be appended to the log file name so that there is a new log file for every day.

Parent Proxy

If you require that HTTP request be sent through a parent or upstream proxy, then specify that here. WebScout will filter any requests it receives and only send the allowed requests to the upstream proxy. Since WebScout cannot providing any caching, you may want to specify a cache proxy as your parent proxy if you have one.