Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Block blacklisted, allow everything else. Allow blacklist if authenticated

    Scheduled Pinned Locked Moved Cache/Proxy
    3 Posts 2 Posters 960 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K Offline
      kripz
      last edited by

      Is this possible? I'd like to block

      update.microsoft.com
      windowsupdate.microsoft.com
      windowsupdate.com
      download.windowsupdate.com

      unless a username and password is entered. Everything else will be allowed.

      Currently running a transparent proxy with everything allowed, no authentication.

      1 Reply Last reply Reply Quote 0
      • K Offline
        kripz
        last edited by

        is this possible?

        1 Reply Last reply Reply Quote 0
        • jimpJ Offline
          jimp Rebel Alliance Developer Netgate
          last edited by

          No, you cannot have authentication active in squid while also having transparent mode active.

          There may be some other way to reach the same goal, however, it wouldn't involve strictly using pfSense (e.g. second proxy box you could manually configure with auth, or maybe 802.1x auth to drop into another VLAN, etc)

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.