same I made a post about it down, fresh install right?

Changed perl location at top of clwarn.cgi

from

/usr/pbi/squid-i386/local/bin/perl5.18.4/bin/perl

to

/usr/local/bin/perl

Although both binaries seem to run fine, it prefers the second.

oh sorry, I think that I found answer to my question

acl HOST1 src 192.168.0.114/32
acl HOST2 src 192.168.0.115/32

tcp_outgoing_address 192.168.2.91 HOST1
tcp_outgoing_address 192.168.2.91 HOST2

:)

BUT is it possible to specific this just for one port ?
Thanks

Well, I'll try setting it up that way (the vlan) tonight and see if it works.

Use squidGuard in conjunction with a blacklist like Shallalist and you will catch a lot of the common sites.  For other sites, create your own Target Category and then load it with whatever domains, URLs and regex you want.

Ok Got that.

What if I want to allow a group of users to only certain websites?  Example…. Allow them access to google.com, yahoo.com and msn.com, but block all other websites.

Thanks,
Rick

Hi guys,

I cannot believe nobody can help me here or at least tell me that I have an error in my plan. Do I need the second NIC (so, is there a requierement for NAT)?

Regards
Johannes

Destination: WAN

What kind of dest is that?  It would be dest ANY? My bad on wording that wrong, why would dest be WAN is what I meant to say.

@KOM:

Why on Earth would you wait 2 months and then reply back in Spanish????

!!! :D

Is there a way to temporarily disable squidGuard?

Uncheck the Enable box?

HAVP update to 0.91_3 pkg v1.05_1 doesn't solve this problem, manual changes to havp.inc file must be done.

@omrom:

Hi,

I think there's just a misanderstanding on my words.  :D

As told in my PM, we can also discuss this in French if it helps (PM) and then revert back here once solved to provide feedback to community.

THANK YOU doktornotor.

I REMOVE IT BUT ITS NOT WORKING.

IM SEND  WITH ATTACHMENT USING GMAIL.ITS RECEIVED TO OUTLOOK AND TRY TO FORWARD TO SAME EMAIL ADDRESS.SAME ERROR.

:-[ :-[ :-[ :-[

Hi KOM,  :)

Many thanks to your reply and ill take note of that.

Cheers,
GiL

Restarting the process with squid -k reconfigure may do it by I have never tried.

There is no max users.  It's based on the available resources and load.

The CPU use scales with the network load.  The pfSense appliances come with Gigabit interfaces, so you are limited to that unless you're doing some virtual config with VMX3 NICs.  Supermule has a high bandwidth connection and may be able to give more information.

Dont go there.

They have 3G/4G on the phone and doesnt have to use your wifi.

Thereby having no control of the students. It doesnt have any effect.

Instead of shutting everything down, open it up and log the traffic. Much better using captive portal.

@hupernika0:

For the school, I want to blacklist everything and have a short whitelist so that students can't go surfing anywhere that hasn't been pre-approved.

For the guest wifi, the Pastor wants to just try out a guest wifi and see how it will work out, but he is justifiably afraid of it coming back and and biting him. So he'd like to start with the short whitelist.