AWS Squid Blog Gets an Update
The AWS Squid blog recently got an update to cater for Amazon Linux 2, autoscaling and not having to compile squid anymore.
https://aws.amazon.com/blogs/security/how-to-add-dns-filtering-to-your-nat-instance-with-squid/
Nicolas Malaval has pretty much nailed this blog down nicely as it covers all aspects of what you would want an enterprise squid solution to cover. No point re-inventing the wheel here. This ones a go to blog post.
In this post, I’ve shown how you can use Squid to implement a high availability solution that filters outgoing traffic to the Internet and helps meet your security and compliance needs, while being fully transparent for the back-end instances in your VPC. I’ve also discussed the key differences between transparent proxies and forward proxies. Finally, I gave an example of how to share a transparent proxy solution across multiple VPCs using AWS Transit Gateway.