Pfsense + squidguard blocks an url from a deleted common acl rule

romanek

Hi,

I am using pfense 2.03 with squid+squidguard.

I removed a common acl rule using GUI, but it still blocking  the url:

Request denied by pfSense proxy: 403 Forbidden

Reason:
Client address: 192.168.1.1
Client group: default
Target group: blk_blacklists_news
URL: http://www.terra.com.br/

targert group:blk_blacklists_news doesn´t exist anymore

Default access [all] has allow

What file do I have to change to get it work again ?

Thank you

Racy

dvserg

You must Apply you changes.

romanek

Hi,

Thank you for your reply.

I Saved and I applied it, but it didnt work

Best regards

dvserg

Pls show you squidguard config

romanek

Hi,

It is here:

============================================================

SquidGuard configuration file

This file generated automaticly with SquidGuard configurator

(C)2006 Serg Dvoriancev

email: dv_serg@mail.ru

============================================================

logdir /var/squidGuard/log
dbhome /var/db/squidGuard

dest ads {
domainlist ads/domains
urllist ads/urls
}

dest aggressive {
domainlist aggressive/domains
urllist aggressive/urls
}

dest audio-video {
domainlist audio-video/domains
urllist audio-video/urls
}

dest drugs {
domainlist drugs/domains
urllist drugs/urls
}

dest gambling {
domainlist gambling/domains
urllist gambling/urls
}

dest hacking {
domainlist hacking/domains
urllist hacking/urls
}

dest mail {
domainlist mail/domains
}

dest porn {
domainlist porn/domains
expressionlist porn/expressions
urllist porn/urls
}

dest proxy {
domainlist proxy/domains
urllist proxy/urls
}

dest violence {
domainlist violence/domains
expressionlist violence/expressions
urllist violence/urls
}

dest warez {
domainlist warez/domains
urllist warez/urls
}

rew safesearch {
s@(google../search?.q=.)@
&safe=active@i
s@(google../images.q=.)@
&safe=active@i
s@(google../groups.q=.)@
&safe=active@i
s@(google../news.q=.)@
&safe=active@i
s@(yandex../yandsearch?.text=.)@
&fyandex=1@i
s@(search.yahoo../search.p=.)@
&vm=r&v=1@i
s@(search.live../.q=.)@
&adlt=strict@i
s@(search.msn../.q=.)@
&adlt=strict@i
s@(.bing..*/.q=.)@
&adlt=strict@i
}

acl  {

default  {
pass all
redirect http://192.168.1.253:80/sgerror.php?url=403%20&a=%a&n=%n&i=%i&s=%s&t=%t&u=%u
}
}

dvserg

@romanek:

acl  {

default  {
pass all
redirect http://192.168.1.253:80/sgerror.php?url=403%20&a=%a&n=%n&i=%i&s=%s&t=%t&u=%u
}
}

All correct. You are SG rules not block blk_blacklists_news
Possible trouble in squid cache. Try restart squid and refresh you pages in browser.

romanek

Hi,

Thank you for your reply …

I did that and I also did:

cd /var/squid/cache
rm -rf *
squid -z

But it still the same thing

dvserg

SG config is correct, and i'm not have other idea's.
Sorry  :(

romanek

Ok, Anyway, thank you for your time ;)

srk3461

Did you try clearing your browser cache!? And accessing the same site!