How to prevent access to porn site through pfsense server

tommyboy180

That's how to clear the DNS Cache, I think he means clear the Squid Cache like you can in IPCop via the GUI.

To do this you need to
1. Stop Squid
2. delete everything in /var/squid/cache
3. recreate squid swap```
squid -z

4\. Start Squid

jigpe

thanks sir
jigp
Davao City

abd2002390

i tried using squid guard mant time and dont do any thing and many time i press save and aplly and still stopped

tommyboy180

Take a look at the tutorial for squid guard. It shows you how to configure it step by step. Gotta love those Flash tutorials.

abd2002390

thank u i have run it but i want to redirect to spicific webside when a user try to log to porn side

LedHed

You could always install the 'SquidGuard' Package, and deny access with the Porn Blacklist.

abd2002390

ok thank u
i have do it
but there was aproblem and he block browsing internet and redirict me to the main page of server web

tommyboy180

If you can get to your router do the following:
Go to Services -> Proxy Content -> Default -> and click Destination Ruleset. (See Attachment 1)
Now Scroll to the bottom of your Ruleset list and find "Default Access [all]" Change this to access = allow (See Attachment 2)

Hope this helps.

attachement1.jpg_thumb

attachement2.jpg_thumb

abd2002390

yes i made this before
when i open any webside it direct me to th main page of server and ask for use name and pass

tommyboy180

If you disable SquidGuard do you still get the usr and pass prompt?

abd2002390

yes and the problem does not been solved except i have the proxy server turned off

tommyboy180

okay, so it sounds like you have something set wrong in Squid.
Are you running squid in transparent mode? If not try that. Also check your Auth settings in Squid.

jigpe

Is there a way to limit the download of x movies if they use ftp or ssh outside? Im assuming that the users cannot download porns like .avi files and .mpeg directly to the ftp outside.. How to get rid of this? Ive tried traffic shaper but no luck.. Still they can download porn x movies. I even blocked %.exe|.mpeg|.mpg|.mov still not working.. They can still download porn x movies..
jigp
Davao City

Cry Havok

The only way to block transfers over SSH is to block SSH (port 22). To block FTP you have to ensure you're blocking outbound connections to ports 20 and 21.

jigpe

OT: how to change the proxy host ip and port? i have private proxy:port but i cannot see in the menu of squid even in squidguard there is no ways to change the proxy:port… right now im using my local proxy 192.168.2.1:3128 ... How to change to proxy ip:port? Thanks
jigp
Davao City