(CLOSED) PROBLEMS WITH PROXY SETTINGS
-
I am VERY new at this. But as I looked at your screen captures I started to wonder if you completely setup the blacklist.
I saw that you added the blacklist under Services => Proxy Filter => General Settings => Blacklist Options => Blacklist URL.
Did you also click on the Services => Proxy Filter => Blacklist tab and download the Blacklist? If you didn't, you should, and wait until you see "Blacklist update complete."
Then click on the "Common ACL" tab. You will see a white arrow in a green box just after the words, "Target Rules List (click here)". In the list that appears locate "[blk_BL_porn]" and set it to "deny". (You can set others later if you wish, this is just a test.) At the bottom of the list set "Default access [all]" to allow (if it is not already).
Scroll to the bottom of the page and click on [Save], then on the "General Settings" tab and click on "Apply".
Is porn blocked now? Can you still get to non-porn sites?
-
Did you also click on the Services => Proxy Filter => Blacklist tab and download the Blacklist?
I don't think he would see any Target Categories if he didn't already download the list.
Looking at the screenshot, you have a Time of 19:45-20:00 with a 5 minute window. If you link that time to your rules then the rules will only be in effect for that timeframe. Are you testing between 19:45 and 20:00? Remove the time setting and then try your rules again just to verify that they are working.
-
Thanks KOM, I removed the option of time and I'm doing just with blocking blacklist, you can tell me if is right that only configure in General active the squidguard and the url of shalla and tab group ACL i create a new group specifying the ip and select the category to block? can you tell me what steps you perform ru for this to work?
-
I thought so too, but I seem to have gotten a little lost as started writing my reply - it has been a long day for me.
I do find it interesting that we can see the Target Rules in 2.png but then he added what he wanted to block under Squid Access Control Lists => "Blacklist"
What I did not see (or missed) was his setting "[blk_BL_porn]" to "deny" as a test to block porn (which 4.png seems to indicate he would like to block).
Also, if memory serves, he doesn't mention Proxy Server:Antivirus. It seems to me I experienced several headaches until I went there and made the recommended changes. (Click [Save], do what the red messages at the top told me to do, click [Save] again. Oh! and ran freshclam from the command line.)
-
Klaus, you pretty much have it right. Did you test without a schedule linked to your rules? Does it block properly if you make your changes to Common ACL instead of a Group?
-
hi today i configure one ip for win xp, squid active and in the "Proxy filter SquidGuard: Common Access Control List (ACL)" and select the category "porn & news" then when i try access in url cnn.com now block:
Request denied by pfSense proxy: 403 Forbidden
Reason:
Client address: 192.168.128.3
Client group: default
Target group: blk_BL_news
URL: http://www.cnn.com/But if i put the url depor.pe appears in the bar appear me this
https://172.16.1.1/sgerror.php?url=403%20&a=172.16.1.3&n=&i=&s=default&t=none&u=http://depor.pe/
and …
Request denied by pfSense proxy: 403 Forbidden
Reason:
Client address: 172.16.1.3
Client group: default
Target group: none
URL: http://depor.pe/But if i access to google.com this ok and i write the word google and select google.com this ok. Why is this?
-
You are saying that it is blocking depor.pe and you don't know why? Perhaps this site is in the News category of the blacklist you are using? Which blacklist are you using anyway? Shallalist or some other one?
-
This block all but if i navigate with browser in google and enter a depor, this page enter.
-
Well, i re-install the pfsense in version 2.2 and now is all ok. Thanks for all.
-
@ klausneil
If/when you want to "close" a"Topic/Thread" that you've started, use the "Lock Topic" Button (at Bottom Left side) ;)
