SQUID - Horário do log / bloqueios

ghislenidroid

Prezados,

Bom dia!

Na última semana tive problemas no meu PFSense e tive que começar do ZERO.

Fiz os procedimentos conforme minhas anotações e dicas que já havia recolhido aqui no fórum e outros how to, antes meu controle de acesso era feito por regras no firewall e no SQUID, porém desde que que subi o SQUID + SQUIDGUARD, observei que o horário dos logs apresentados não são compativeis com o horário do servidor/client (Print3).

A configuração do NTP (Print1) e a visualização no dashboard estão corretas (print2).

2.3.2-RELEASE (amd64) built on Tue Jul 19 12:44:43 CDT 2016 FreeBSD 10.3-RELEASE-p5
Proxy Transparente

Log do Squid


1488484774.671      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 40.117.145.132:443 - HIER_NONE/- -
1488484774.671      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 40.117.145.132:443 - HIER_NONE/- -
1488484774.728     79 192.168.1.44 TCP_DENIED/200 0 CONNECT 40.77.228.69:443 - HIER_NONE/- -
1488484774.782      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 40.77.228.69:443 - HIER_NONE/- -
1488484774.815    166 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484774.815    166 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484775.613      0 192.168.1.42 TCP_DENIED/200 0 CONNECT 104.209.188.76:443 - HIER_NONE/- -
1488484776.868      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 40.77.228.69:443 - HIER_NONE/- -
1488484776.905      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 40.77.228.69:443 - HIER_NONE/- -
1488484778.855    185 192.168.1.24 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484778.956      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 40.77.228.69:443 - HIER_NONE/- -
1488484778.977      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 40.77.228.69:443 - HIER_NONE/- -
1488484779.402    214 192.168.1.44 TCP_DENIED/200 0 CONNECT 64.4.54.18:443 - HIER_NONE/- -
1488484779.464      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 64.4.54.18:443 - HIER_NONE/- -
1488484779.669      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484780.835    213 192.168.1.44 TCP_DENIED/200 0 CONNECT 65.55.252.202:443 - HIER_NONE/- -
1488484781.011      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 65.55.252.202:443 - HIER_NONE/- -
1488484781.307      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484781.309      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484781.310      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484781.312      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484781.313      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484781.494      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484782.308      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484782.310      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484784.319      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 65.55.252.202:443 - HIER_NONE/- -
1488484784.500      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 65.55.252.202:443 - HIER_NONE/- -
1488484784.513     13 192.168.1.49 TCP_DENIED/200 0 CONNECT 216.58.202.238:443 - HIER_NONE/- -
1488484784.661      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 65.55.252.202:443 - HIER_NONE/- -
1488484784.788      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 65.55.252.202:443 - HIER_NONE/- -
1488484784.852     10 192.168.1.24 TCP_DENIED/200 0 CONNECT 191.232.0.27:443 - HIER_NONE/- -
1488484784.877      1 192.168.1.106 TCP_DENIED/200 0 CONNECT 201.17.165.162:443 - HIER_NONE/- -
1488484785.011      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 191.232.0.27:443 - HIER_NONE/- -
1488484785.642      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484785.922      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484785.945      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484786.040    466 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484786.240      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484786.241      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484787.097    904 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.32:443 - HIER_NONE/- -
1488484787.399      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484788.628      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 216.58.202.238:443 - HIER_NONE/- -
1488484789.209      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.22:443 - HIER_NONE/- -
1488484789.682      1 192.168.1.46 TCP_DENIED/200 0 CONNECT 201.17.165.182:443 - HIER_NONE/- -
1488484789.988      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484791.563      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484791.864      1 192.168.1.49 TCP_DENIED/200 0 CONNECT 65.55.44.108:443 - HIER_NONE/- -
1488484791.878      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 64.4.54.254:443 - HIER_NONE/- -
1488484791.948      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 65.55.44.108:443 - HIER_NONE/- -
1488484791.992      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 65.55.44.108:443 - HIER_NONE/- -
1488484792.024      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 65.55.44.108:443 - HIER_NONE/- -
1488484792.072      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 65.55.44.108:443 - HIER_NONE/- -
1488484795.616      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 216.58.202.238:443 - HIER_NONE/- -
1488484796.028      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484796.828      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 201.17.165.162:443 - HIER_NONE/- -
1488484800.702      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484800.818      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484801.158      1 192.168.1.42 TCP_DENIED/200 0 CONNECT 185.85.13.155:443 - HIER_NONE/- -
1488484801.948      1 192.168.1.106 TCP_DENIED/200 0 CONNECT 38.113.165.101:443 - HIER_NONE/- -
1488484802.199      1 192.168.1.106 TCP_DENIED/200 0 CONNECT 38.113.165.113:443 - HIER_NONE/- -
1488484802.224      1 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.36:443 - HIER_NONE/- -
1488484802.247      1 192.168.1.106 TCP_DENIED/200 0 CONNECT 38.113.165.110:443 - HIER_NONE/- -
1488484802.267      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 38.113.165.68:443 - HIER_NONE/- -
1488484803.496      1 192.168.1.24 TCP_DENIED/200 0 CONNECT 66.110.49.18:443 - HIER_NONE/- -
1488484804.340      1 192.168.1.24 TCP_DENIED/200 0 CONNECT 13.107.3.128:443 - HIER_NONE/- -
1488484804.342      1 192.168.1.24 TCP_DENIED/200 0 CONNECT 13.107.5.88:443 - HIER_NONE/- -
1488484804.845      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484805.371    207 192.168.1.24 TCP_DENIED/403 4075 GET http://dnl-00.geo.kaspersky.com/updates/kdb/i386/diffs/baseb.mft.i9a - HIER_NONE/- text/html
1488484805.378      1 192.168.1.24 TCP_DENIED/403 4043 GET http://dnl-00.geo.kaspersky.com/updates/kdb/i386/baseb.mft - HIER_NONE/- text/html
1488484809.559      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 64.4.54.98:443 - HIER_NONE/- -
1488484810.076      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484811.294      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484811.324      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484811.326      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484811.341      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484811.342      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484811.344      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484812.245    209 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-19.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484812.250      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-19.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484812.255      0 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-19.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484812.325      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484812.326      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484813.115      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484813.633    199 192.168.1.44 TCP_DENIED/200 0 CONNECT 108.160.172.236:443 - HIER_NONE/- -
1488484813.728      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 108.160.172.236:443 - HIER_NONE/- -
1488484815.367    184 192.168.1.49 TCP_DENIED/200 0 CONNECT 201.17.165.153:443 - HIER_NONE/- -
1488484815.666      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484815.982      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484815.983      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484816.516      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-14.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484816.519      0 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-14.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484816.523      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-14.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484816.574    134 192.168.1.49 TCP_DENIED/200 0 CONNECT 192.16.48.200:443 - HIER_NONE/- -
1488484816.821      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484816.934      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484816.941      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-16.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484816.945      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-16.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484816.949      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-16.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484817.008      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 64.4.54.98:443 - HIER_NONE/- -
1488484817.720      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484817.967      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-19.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484817.971      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-19.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484817.974      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-19.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484818.229      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-06.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484818.233      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-06.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484818.236      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-06.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484818.459      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-08.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484818.463      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-08.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484818.466      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-08.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484818.677      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-12.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484818.681      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-12.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484818.687      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-12.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484818.709      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-18.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484818.714      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-18.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484818.719      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-18.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484818.784      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 108.160.172.236:443 - HIER_NONE/- -
1488484818.800      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 108.160.172.236:443 - HIER_NONE/- -
1488484818.887      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 216.58.202.238:443 - HIER_NONE/- -
1488484818.954      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-11.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484818.958      0 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-11.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484818.961      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-11.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484819.019    232 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-02.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484819.024      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-02.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484819.029      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-02.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484819.150      2 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.164      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 38.99.185.100:443 - HIER_NONE/- -
1488484819.232      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-03.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484819.238      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-03.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484819.243      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-03.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484819.252      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.271      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.306      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.337      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.370      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.412      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.446      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.482      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.516      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.549      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.584      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.616      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.649      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.682      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.713      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.744      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.777      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.787    201 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-10.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484819.787     36 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-10.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484819.791      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-10.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484819.793      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-10.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484819.795      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-10.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484819.798      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-10.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484819.809      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.814      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484819.841      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.872      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.905      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.945      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 107.23.92.178:443 - HIER_NONE/- -
1488484819.989      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484820.033      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-04.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484820.038      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-04.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484820.043      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-04.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484820.099      1 192.168.1.24 TCP_DENIED/200 0 CONNECT 66.110.49.42:443 - HIER_NONE/- -
1488484820.237      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-17.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484820.242      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-17.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484820.248      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-17.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484820.409      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-07.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484820.413      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-07.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484820.416      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-07.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484820.437      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-02.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484820.441      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-02.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484820.444      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-02.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484820.497      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 38.99.185.100:443 - HIER_NONE/- -
1488484820.569    235 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-15.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484820.574      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-15.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484820.580      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-15.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484820.610      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-01.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484820.615      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-01.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484820.620      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-01.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484820.661      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-00.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484820.665      0 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-00.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484820.670      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-00.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484820.764      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484820.894      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-09.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484820.898      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-09.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484820.901      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-09.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484820.964      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-15.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484820.967      0 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-15.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484820.970      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-15.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484821.109      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484821.147      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-09.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484821.163      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-09.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484821.170      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-09.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484821.191      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-05.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484821.194      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-05.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484821.198      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-05.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484821.359      1 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-13.geo.kaspersky.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484821.367      0 192.168.1.20 TCP_DENIED/403 4033 GET http://dnl-13.geo.kaspersky.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484821.370      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-13.geo.kaspersky.com/updaters/updater.xml - HIER_NONE/- text/html
1488484821.726    213 192.168.1.49 TCP_DENIED/200 0 CONNECT 40.77.226.224:443 - HIER_NONE/- -
1488484821.760      1 192.168.1.20 TCP_DENIED/403 4048 GET http://downloads0.kaspersky-labs.com/updaters/updater.xml.dif - HIER_NONE/- text/html
1488484821.765      1 192.168.1.20 TCP_DENIED/403 4048 GET http://downloads0.kaspersky-labs.com/updaters/updater.xml.klz - HIER_NONE/- text/html
1488484821.771      1 192.168.1.20 TCP_DENIED/403 4036 GET http://downloads0.kaspersky-labs.com/updaters/updater.xml - HIER_NONE/- text/html
1488484821.816      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484821.916      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-03.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484821.920      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-03.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484821.923      1 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-03.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484821.937      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-07.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484821.941      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-07.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484821.944      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-07.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484821.958      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-10.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484821.962      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-10.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484821.965      1 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-10.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484821.979      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-09.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484821.983      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-09.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484821.986      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-09.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.103      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-08.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.107      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-08.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.110      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-08.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.124      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-15.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.128      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-15.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.131      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-15.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.145      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-06.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.148      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-06.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.152      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-06.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.165      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-04.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.169      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-04.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.172      1 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-04.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.172      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484822.205      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 66.110.49.42:443 - HIER_NONE/- -
1488484822.211      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-16.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.215      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-16.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.219      1 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-16.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.257      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-05.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.263      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-05.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.268      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-05.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.288      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-12.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.296      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-12.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.301      1 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-12.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.325      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-18.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.330      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-18.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.335      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-18.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.356      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-17.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.362      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-17.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.367      1 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-17.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.386      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-19.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.389      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-19.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.395      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-19.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.416      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-00.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.420      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-00.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.426      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-00.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.686      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-02.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.690      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-02.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.694      1 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-02.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.707      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-13.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.711      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-13.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.714      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-13.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.729      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-14.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.732      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-14.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.736      1 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-14.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.756      1 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-01.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.759      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-01.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.763      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-01.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.777      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-11.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484822.780      0 192.168.1.20 TCP_DENIED/403 4021 GET http://dnl-11.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484822.784      0 192.168.1.20 TCP_DENIED/403 4009 GET http://dnl-11.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484822.816      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 38.99.185.100:443 - HIER_NONE/- -
1488484823.161      1 192.168.1.20 TCP_DENIED/403 4036 GET http://downloads5.kaspersky-labs.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484823.168      1 192.168.1.20 TCP_DENIED/403 4036 GET http://downloads5.kaspersky-labs.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484823.173      1 192.168.1.20 TCP_DENIED/403 4024 GET http://downloads5.kaspersky-labs.com/index/u1313g.xml - HIER_NONE/- text/html
1488484825.660      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 201.17.165.153:443 - HIER_NONE/- -
1488484826.035      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484826.371      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-04.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484826.376      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-04.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484826.381      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-04.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484826.814      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484826.940      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-14.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484826.945      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-14.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484826.950      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-14.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484827.101      1 192.168.1.44 TCP_DENIED/200 0 CONNECT 201.17.165.168:443 - HIER_NONE/- -
1488484827.414      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 38.99.185.100:443 - HIER_NONE/- -
1488484827.643      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-07.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484827.648      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-07.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484827.654      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-07.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484828.425    158 192.168.1.44 TCP_DENIED/200 0 CONNECT 173.194.212.132:443 - HIER_NONE/- -
1488484828.467      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 173.194.212.132:443 - HIER_NONE/- -
1488484828.695      1 192.168.1.20 TCP_DENIED/200 0 CONNECT 178.79.142.243:443 - HIER_NONE/- -
1488484829.232      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484830.938      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484831.477      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484831.812      1 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484831.812      1 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484831.947      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484832.008      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 216.58.202.238:443 - HIER_NONE/- -
1488484832.263    318 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484833.369      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484834.200      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-13.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484834.206      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-13.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484834.211      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-13.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484834.394      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484834.848      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484836.009      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484837.325      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484837.326      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484837.327      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484837.328      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484837.329      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484837.330      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484837.331      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484837.332      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484837.332      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484837.333      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484837.334      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484837.335      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484837.336      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484837.337      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484837.369      1 192.168.1.20 TCP_DENIED/200 0 CONNECT 151.101.92.207:443 - HIER_NONE/- -
1488484837.369      1 192.168.1.20 TCP_DENIED/200 0 CONNECT 151.101.92.207:443 - HIER_NONE/- -
1488484837.397     44 192.168.1.20 TCP_DENIED/200 0 CONNECT 104.20.21.239:443 - HIER_NONE/- -
1488484837.397     44 192.168.1.20 TCP_DENIED/200 0 CONNECT 104.20.21.239:443 - HIER_NONE/- -
1488484837.514    140 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.6.203.138:443 - HIER_NONE/- -
1488484837.514    140 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.6.203.138:443 - HIER_NONE/- -
1488484837.819    347 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- -
1488484837.819    347 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- -
1488484837.819    347 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- -
1488484837.927    582 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.31.164.174:443 - HIER_NONE/- -
1488484837.927    587 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.31.164.174:443 - HIER_NONE/- -
1488484838.320      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 178.79.142.243:443 - HIER_NONE/- -
1488484838.497      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484838.798      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484838.799      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484838.885      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484838.914      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484839.504      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484839.755      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-01.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484839.759      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-01.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484839.763      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-01.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484840.283      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484840.302      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-08.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484840.312      0 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-08.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484840.321      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-08.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484840.683      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-18.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484840.688      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-18.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484840.693      0 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-18.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484841.311      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484841.357      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484841.359      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484841.360      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484841.362      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484841.363      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484841.547      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-03.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484841.552      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-03.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484841.557      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-03.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484842.111      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-17.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484842.115      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-17.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484842.120      0 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-17.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484842.342      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484842.344      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484842.369    154 192.168.1.44 TCP_DENIED/200 0 CONNECT 173.194.215.132:443 - HIER_NONE/- -
1488484842.372      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 178.79.142.243:443 - HIER_NONE/- -
1488484842.479      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-12.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484842.484      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-12.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484842.489      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-12.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484842.532      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484842.596      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 66.110.49.42:443 - HIER_NONE/- -
1488484842.721      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484842.909      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484842.910      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484843.051      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-06.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484843.055      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-06.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484843.060      0 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-06.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484843.264    521 192.168.1.44 TCP_DENIED/200 0 CONNECT 8.18.25.18:443 - HIER_NONE/- -
1488484843.293      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 13.107.5.88:443 - HIER_NONE/- -
1488484843.298      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484843.349      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484843.611      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-11.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484843.615      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-11.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484843.620      0 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-11.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484843.689      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 216.58.202.238:443 - HIER_NONE/- -
1488484844.181      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-16.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484844.186      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-16.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484844.192      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-16.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484844.195      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 72.247.3.30:443 - HIER_NONE/- -
1488484844.942      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484845.225      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 66.110.49.42:443 - HIER_NONE/- -
1488484845.444      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 201.17.165.153:443 - HIER_NONE/- -
1488484845.574      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484845.575      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484845.576      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484845.577      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- -
1488484845.578      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- -
1488484845.579      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- -
1488484845.580      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.31.164.174:443 - HIER_NONE/- -
1488484845.581      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.31.164.174:443 - HIER_NONE/- -
1488484845.582      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 151.101.92.207:443 - HIER_NONE/- -
1488484845.583      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 151.101.92.207:443 - HIER_NONE/- -
1488484845.584      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484845.585      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484845.586      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484845.586      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484845.587      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484845.588      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.6.203.138:443 - HIER_NONE/- -
1488484845.589      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.6.203.138:443 - HIER_NONE/- -
1488484845.591      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.6.203.138:443 - HIER_NONE/- -
1488484845.593      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 104.20.21.239:443 - HIER_NONE/- -
1488484845.594      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 104.20.21.239:443 - HIER_NONE/- -
1488484845.595      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484845.595      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484845.596      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484845.597      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484845.597      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484845.598      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484845.668      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484845.996      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484845.998      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484846.064    349 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.71.159.20:443 - HIER_NONE/- -
1488484846.064    350 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.71.159.20:443 - HIER_NONE/- -
1488484846.068    353 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.71.159.20:443 - HIER_NONE/- -
1488484846.068    353 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.71.159.20:443 - HIER_NONE/- -
1488484846.120      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-05.geo.kaspersky.com/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484846.130      1 192.168.1.24 TCP_DENIED/403 4021 GET http://dnl-05.geo.kaspersky.com/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484846.135      1 192.168.1.24 TCP_DENIED/403 4009 GET http://dnl-05.geo.kaspersky.com/index/u1313g.xml - HIER_NONE/- text/html
1488484846.569      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 178.79.142.243:443 - HIER_NONE/- -
1488484846.663      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484846.776    606 192.168.1.24 TCP_DENIED/403 3991 GET http://212.73.221.205/index/u1313g.xml.dif - HIER_NONE/- text/html
1488484846.782      0 192.168.1.24 TCP_DENIED/403 3991 GET http://212.73.221.205/index/u1313g.xml.klz - HIER_NONE/- text/html
1488484846.787      0 192.168.1.24 TCP_DENIED/403 3979 GET http://212.73.221.205/index/u1313g.xml - HIER_NONE/- text/html
1488484846.955      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484846.956      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484847.002      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484847.048      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484847.286    150 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.30:443 - HIER_NONE/- -
1488484847.896      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 66.110.49.42:443 - HIER_NONE/- -
1488484848.052      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.32:443 - HIER_NONE/- -
1488484848.167      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.30:443 - HIER_NONE/- -
1488484848.283      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.32:443 - HIER_NONE/- -
1488484848.397      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.30:443 - HIER_NONE/- -
1488484848.512      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.32:443 - HIER_NONE/- -
1488484848.629      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.22:443 - HIER_NONE/- -
1488484848.698      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 178.79.142.243:443 - HIER_NONE/- -
1488484848.742      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.30:443 - HIER_NONE/- -
1488484848.836      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484848.857      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.32:443 - HIER_NONE/- -
1488484849.208      0 192.168.1.106 TCP_DENIED/200 0 CONNECT 66.110.49.30:443 - HIER_NONE/- -
1488484849.301      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 173.194.215.132:443 - HIER_NONE/- -
1488484849.475      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484849.521      0 192.168.1.44 TCP_DENIED/200 0 CONNECT 201.17.165.168:443 - HIER_NONE/- -
1488484849.533      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484849.572    161 192.168.1.44 TCP_DENIED/200 0 CONNECT 8.18.25.28:443 - HIER_NONE/- -
1488484850.002      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484850.469      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484850.470      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484850.470      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484850.471      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- -
1488484850.472      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- -
1488484850.473      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- -
1488484850.474      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.31.164.174:443 - HIER_NONE/- -
1488484850.475      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.31.164.174:443 - HIER_NONE/- -
1488484850.476      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 151.101.92.207:443 - HIER_NONE/- -
1488484850.477      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 151.101.92.207:443 - HIER_NONE/- -
1488484850.478      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.71.159.20:443 - HIER_NONE/- -
1488484850.480      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.71.159.20:443 - HIER_NONE/- -
1488484850.482      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.71.159.20:443 - HIER_NONE/- -
1488484850.483      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.71.159.20:443 - HIER_NONE/- -
1488484850.486      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484850.486      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484850.487      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484850.488      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.6.203.138:443 - HIER_NONE/- -
1488484850.490      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.6.203.138:443 - HIER_NONE/- -
1488484850.491      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.6.203.138:443 - HIER_NONE/- -
1488484850.493      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 104.20.21.239:443 - HIER_NONE/- -
1488484850.494      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 104.20.21.239:443 - HIER_NONE/- -
1488484850.495      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484850.495      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484850.496      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484850.497      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484850.497      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484850.498      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484851.439      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 178.79.142.243:443 - HIER_NONE/- -
1488484851.673      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484852.304      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484852.327      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484853.755      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484855.713      0 192.168.1.49 TCP_DENIED/200 0 CONNECT 201.17.165.153:443 - HIER_NONE/- -
1488484856.050      0 192.168.1.46 TCP_DENIED/200 0 CONNECT 216.58.222.110:443 - HIER_NONE/- -
1488484856.280      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484856.465      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484857.644      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 13.107.3.128:443 - HIER_NONE/- -
1488484859.177      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 52.6.203.138:443 - HIER_NONE/- -
1488484859.179      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 178.79.142.243:443 - HIER_NONE/- -
1488484859.184      0 192.168.1.24 TCP_DENIED/200 0 CONNECT 13.107.5.88:443 - HIER_NONE/- -
1488484860.067      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484860.349      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484860.350      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 72.21.91.42:443 - HIER_NONE/- -
1488484860.431      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484860.486      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484860.487      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 148.62.0.31:443 - HIER_NONE/- -
1488484861.209      0 192.168.1.42 TCP_DENIED/200 0 CONNECT 185.85.13.155:443 - HIER_NONE/- -
1488484862.222      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484862.223      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484862.223      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 50.56.166.82:443 - HIER_NONE/- -
1488484862.224      0 192.168.1.20 TCP_DENIED/200 0 CONNECT 23.253.121.112:443 - HIER_NONE/- - **![Print1.png_thumb](/public/_imported_attachments_/1/Print1.png_thumb)
![Print2.png](/public/_imported_attachments_/1/Print2.png)
![Print2.png_thumb](/public/_imported_attachments_/1/Print2.png_thumb)
![Print3.png](/public/_imported_attachments_/1/Print3.png)
![Print3.png_thumb](/public/_imported_attachments_/1/Print3.png_thumb)**

danilosv.03

Em times servers coloca isso aqui: a.ntp.org ele vai pegar o horário do BR. Da próxima vez tenta colocar só os print KKKK. Ficou meio poluído.

ghislenidroid

@danilosv.03:

Em times servers coloca isso aqui: a.ntp.org ele vai pegar o horário do BR. Da próxima vez tenta colocar só os print KKKK. Ficou meio poluído.

Cara eu tinha colocado utilizando o```
....

danilosv.03

Mas deu certo?

ghislenidroid

Mudei no System / General Setup, parei o serviço e iniciei, nada mudou.

Vou reiniciar o servidor daqui a pouco e retorno se houve alguma mudança.

ghislenidroid

@danilosv.03:

Mas deu certo?

Danilov.03

Agora deu certo quanto ao horário que deve gravar no log, agora tenho que resolver outro problema, mas continuo com o problema de TUDO estar bloqueado;

Squid e Squidguard desativados; Se tento acessar alguma página bloqueada, ele não permite acessar (ótimo até aí ;)), porém se ativo o Squid, não estou conseguindo navegar por nenhuma página HTTPS.

Verifiquei as ACL's do Squid e no Blacklist não constam sites como o do google e ainda sim, este é bloqueado.

Será que é alguma configuração do Squidguardian que está impedindo a navegação? :o ???

danilosv.03

É configuração sim.
Mande print de suas configurações para eu analisar. Der um thanks no comentário que lhe ajudou ;)

ghislenidroid

Danilo,

Print's e o squidgard.conf
Valeu!

# ============================================================
# SquidGuard configuration file
# This file generated automaticly with SquidGuard configurator
# (C)2006 Serg Dvoriancev
# email: dv_serg@mail.ru
# ============================================================

logdir /var/squidGuard/log
dbhome /var/db/squidGuard

# Livre
src free {
	ip     192.168.1.200
	ip     192.168.1.201
}

# 
dest blk_BL_adv {
	domainlist blk_BL_adv/domains
	urllist blk_BL_adv/urls
	log block.log
}

# 
dest blk_BL_aggressive {
	domainlist blk_BL_aggressive/domains
	urllist blk_BL_aggressive/urls
	log block.log
}

# 
dest blk_BL_alcohol {
	domainlist blk_BL_alcohol/domains
	urllist blk_BL_alcohol/urls
	log block.log
}

# 
dest blk_BL_anonvpn {
	domainlist blk_BL_anonvpn/domains
	urllist blk_BL_anonvpn/urls
	log block.log
}

# 
dest blk_BL_automobile_bikes {
	domainlist blk_BL_automobile_bikes/domains
	urllist blk_BL_automobile_bikes/urls
	log block.log
}

# 
dest blk_BL_automobile_boats {
	domainlist blk_BL_automobile_boats/domains
	urllist blk_BL_automobile_boats/urls
	log block.log
}

# 
dest blk_BL_automobile_cars {
	domainlist blk_BL_automobile_cars/domains
	urllist blk_BL_automobile_cars/urls
	log block.log
}

# 
dest blk_BL_automobile_planes {
	domainlist blk_BL_automobile_planes/domains
	urllist blk_BL_automobile_planes/urls
	log block.log
}

# 
dest blk_BL_chat {
	domainlist blk_BL_chat/domains
	urllist blk_BL_chat/urls
	log block.log
}

# 
dest blk_BL_costtraps {
	domainlist blk_BL_costtraps/domains
	urllist blk_BL_costtraps/urls
	log block.log
}

# 
dest blk_BL_dating {
	domainlist blk_BL_dating/domains
	urllist blk_BL_dating/urls
	log block.log
}

# 
dest blk_BL_downloads {
	domainlist blk_BL_downloads/domains
	urllist blk_BL_downloads/urls
	log block.log
}

# 
dest blk_BL_drugs {
	domainlist blk_BL_drugs/domains
	urllist blk_BL_drugs/urls
	log block.log
}

# 
dest blk_BL_dynamic {
	domainlist blk_BL_dynamic/domains
	urllist blk_BL_dynamic/urls
	log block.log
}

# 
dest blk_BL_education_schools {
	domainlist blk_BL_education_schools/domains
	urllist blk_BL_education_schools/urls
	log block.log
}

# 
dest blk_BL_finance_banking {
	domainlist blk_BL_finance_banking/domains
	urllist blk_BL_finance_banking/urls
	log block.log
}

# 
dest blk_BL_finance_insurance {
	domainlist blk_BL_finance_insurance/domains
	urllist blk_BL_finance_insurance/urls
	log block.log
}

# 
dest blk_BL_finance_moneylending {
	domainlist blk_BL_finance_moneylending/domains
	urllist blk_BL_finance_moneylending/urls
	log block.log
}

# 
dest blk_BL_finance_other {
	domainlist blk_BL_finance_other/domains
	urllist blk_BL_finance_other/urls
	log block.log
}

# 
dest blk_BL_finance_realestate {
	domainlist blk_BL_finance_realestate/domains
	urllist blk_BL_finance_realestate/urls
	log block.log
}

# 
dest blk_BL_finance_trading {
	domainlist blk_BL_finance_trading/domains
	urllist blk_BL_finance_trading/urls
	log block.log
}

# 
dest blk_BL_fortunetelling {
	domainlist blk_BL_fortunetelling/domains
	urllist blk_BL_fortunetelling/urls
	log block.log
}

# 
dest blk_BL_forum {
	domainlist blk_BL_forum/domains
	urllist blk_BL_forum/urls
	log block.log
}

# 
dest blk_BL_gamble {
	domainlist blk_BL_gamble/domains
	urllist blk_BL_gamble/urls
	log block.log
}

# 
dest blk_BL_government {
	domainlist blk_BL_government/domains
	urllist blk_BL_government/urls
	log block.log
}

# 
dest blk_BL_hacking {
	domainlist blk_BL_hacking/domains
	urllist blk_BL_hacking/urls
	log block.log
}

# 
dest blk_BL_hobby_cooking {
	domainlist blk_BL_hobby_cooking/domains
	urllist blk_BL_hobby_cooking/urls
	log block.log
}

# 
dest blk_BL_hobby_games-misc {
	domainlist blk_BL_hobby_games-misc/domains
	urllist blk_BL_hobby_games-misc/urls
	log block.log
}

# 
dest blk_BL_hobby_games-online {
	domainlist blk_BL_hobby_games-online/domains
	urllist blk_BL_hobby_games-online/urls
	log block.log
}

# 
dest blk_BL_hobby_gardening {
	domainlist blk_BL_hobby_gardening/domains
	urllist blk_BL_hobby_gardening/urls
	log block.log
}

# 
dest blk_BL_hobby_pets {
	domainlist blk_BL_hobby_pets/domains
	urllist blk_BL_hobby_pets/urls
	log block.log
}

# 
dest blk_BL_homestyle {
	domainlist blk_BL_homestyle/domains
	urllist blk_BL_homestyle/urls
	log block.log
}

# 
dest blk_BL_hospitals {
	domainlist blk_BL_hospitals/domains
	urllist blk_BL_hospitals/urls
	log block.log
}

# 
dest blk_BL_imagehosting {
	domainlist blk_BL_imagehosting/domains
	urllist blk_BL_imagehosting/urls
	log block.log
}

# 
dest blk_BL_isp {
	domainlist blk_BL_isp/domains
	urllist blk_BL_isp/urls
	log block.log
}

# 
dest blk_BL_jobsearch {
	domainlist blk_BL_jobsearch/domains
	urllist blk_BL_jobsearch/urls
	log block.log
}

# 
dest blk_BL_library {
	domainlist blk_BL_library/domains
	urllist blk_BL_library/urls
	log block.log
}

# 
dest blk_BL_military {
	domainlist blk_BL_military/domains
	urllist blk_BL_military/urls
	log block.log
}

# 
dest blk_BL_models {
	domainlist blk_BL_models/domains
	urllist blk_BL_models/urls
	log block.log
}

# 
dest blk_BL_movies {
	domainlist blk_BL_movies/domains
	urllist blk_BL_movies/urls
	log block.log
}

# 
dest blk_BL_music {
	domainlist blk_BL_music/domains
	urllist blk_BL_music/urls
	log block.log
}

# 
dest blk_BL_news {
	domainlist blk_BL_news/domains
	urllist blk_BL_news/urls
	log block.log
}

# 
dest blk_BL_podcasts {
	domainlist blk_BL_podcasts/domains
	urllist blk_BL_podcasts/urls
	log block.log
}

# 
dest blk_BL_politics {
	domainlist blk_BL_politics/domains
	urllist blk_BL_politics/urls
	log block.log
}

# 
dest blk_BL_porn {
	domainlist blk_BL_porn/domains
	urllist blk_BL_porn/urls
	log block.log
}

# 
dest blk_BL_radiotv {
	domainlist blk_BL_radiotv/domains
	urllist blk_BL_radiotv/urls
	log block.log
}

# 
dest blk_BL_recreation_humor {
	domainlist blk_BL_recreation_humor/domains
	urllist blk_BL_recreation_humor/urls
	log block.log
}

# 
dest blk_BL_recreation_martialarts {
	domainlist blk_BL_recreation_martialarts/domains
	urllist blk_BL_recreation_martialarts/urls
	log block.log
}

# 
dest blk_BL_recreation_restaurants {
	domainlist blk_BL_recreation_restaurants/domains
	urllist blk_BL_recreation_restaurants/urls
	log block.log
}

# 
dest blk_BL_recreation_sports {
	domainlist blk_BL_recreation_sports/domains
	urllist blk_BL_recreation_sports/urls
	log block.log
}

# 
dest blk_BL_recreation_travel {
	domainlist blk_BL_recreation_travel/domains
	urllist blk_BL_recreation_travel/urls
	log block.log
}

# 
dest blk_BL_recreation_wellness {
	domainlist blk_BL_recreation_wellness/domains
	urllist blk_BL_recreation_wellness/urls
	log block.log
}

# 
dest blk_BL_redirector {
	domainlist blk_BL_redirector/domains
	urllist blk_BL_redirector/urls
	log block.log
}

# 
dest blk_BL_religion {
	domainlist blk_BL_religion/domains
	urllist blk_BL_religion/urls
	log block.log
}

# 
dest blk_BL_remotecontrol {
	domainlist blk_BL_remotecontrol/domains
	urllist blk_BL_remotecontrol/urls
	log block.log
}

# 
dest blk_BL_ringtones {
	domainlist blk_BL_ringtones/domains
	urllist blk_BL_ringtones/urls
	log block.log
}

# 
dest blk_BL_science_astronomy {
	domainlist blk_BL_science_astronomy/domains
	urllist blk_BL_science_astronomy/urls
	log block.log
}

# 
dest blk_BL_science_chemistry {
	domainlist blk_BL_science_chemistry/domains
	urllist blk_BL_science_chemistry/urls
	log block.log
}

# 
dest blk_BL_searchengines {
	domainlist blk_BL_searchengines/domains
	urllist blk_BL_searchengines/urls
	log block.log
}

# 
dest blk_BL_sex_education {
	domainlist blk_BL_sex_education/domains
	urllist blk_BL_sex_education/urls
	log block.log
}

# 
dest blk_BL_sex_lingerie {
	domainlist blk_BL_sex_lingerie/domains
	urllist blk_BL_sex_lingerie/urls
	log block.log
}

# 
dest blk_BL_shopping {
	domainlist blk_BL_shopping/domains
	urllist blk_BL_shopping/urls
	log block.log
}

# 
dest blk_BL_socialnet {
	domainlist blk_BL_socialnet/domains
	urllist blk_BL_socialnet/urls
	log block.log
}

# 
dest blk_BL_spyware {
	domainlist blk_BL_spyware/domains
	urllist blk_BL_spyware/urls
	log block.log
}

# 
dest blk_BL_tracker {
	domainlist blk_BL_tracker/domains
	urllist blk_BL_tracker/urls
	log block.log
}

# 
dest blk_BL_updatesites {
	domainlist blk_BL_updatesites/domains
	urllist blk_BL_updatesites/urls
	log block.log
}

# 
dest blk_BL_urlshortener {
	domainlist blk_BL_urlshortener/domains
	urllist blk_BL_urlshortener/urls
	log block.log
}

# 
dest blk_BL_violence {
	domainlist blk_BL_violence/domains
	urllist blk_BL_violence/urls
	log block.log
}

# 
dest blk_BL_warez {
	domainlist blk_BL_warez/domains
	urllist blk_BL_warez/urls
	log block.log
}

# 
dest blk_BL_weapons {
	domainlist blk_BL_weapons/domains
	urllist blk_BL_weapons/urls
	log block.log
}

# 
dest blk_BL_webmail {
	domainlist blk_BL_webmail/domains
	urllist blk_BL_webmail/urls
	log block.log
}

# 
dest blk_BL_webphone {
	domainlist blk_BL_webphone/domains
	urllist blk_BL_webphone/urls
	log block.log
}

# 
dest blk_BL_webradio {
	domainlist blk_BL_webradio/domains
	urllist blk_BL_webradio/urls
	log block.log
}

# 
dest blk_BL_webtv {
	domainlist blk_BL_webtv/domains
	urllist blk_BL_webtv/urls
	log block.log
}

# Bionexo
dest Personalizada {
	domainlist Personalizada/domains
	expressionlist Personalizada/expressions
	log block.log
}

# 
rew safesearch {
	s@(google\..*/search?.*q=.*)@\1\&safe=active@i
	s@(google\..*/images.*q=.*)@\1\&safe=active@i
	s@(google\..*/groups.*q=.*)@\1\&safe=active@i
	s@(google\..*/news.*q=.*)@\1\&safe=active@i
	s@(yandex\..*/yandsearch?.*text=.*)@\1\&fyandex=1@i
	s@(search\.yahoo\..*/search.*p=.*)@\1\&vm=r&v=1@i
	s@(search\.live\..*/.*q=.*)@\1\&adlt=strict@i
	s@(search\.msn\..*/.*q=.*)@\1\&adlt=strict@i
	s@(\.bing\..*/.*q=.*)@\1\&adlt=strict@i
	log block.log
}

# 
acl  {
	# Livre
	free  {
		pass all
	}
	# 
	default  {
		pass Personalizada blk_BL_redirector !in-addr !blk_BL_aggressive !blk_BL_dating !blk_BL_downloads !blk_BL_education_schools !blk_BL_gamble !blk_BL_hobby_cooking !blk_BL_hobby_games-misc !blk_BL_hobby_games-online !blk_BL_hobby_gardening !blk_BL_hobby_pets !blk_BL_homestyle !blk_BL_jobsearch !blk_BL_movies !blk_BL_music !blk_BL_porn !blk_BL_radiotv !blk_BL_religion !blk_BL_remotecontrol !blk_BL_sex_education !blk_BL_sex_lingerie !blk_BL_shopping !blk_BL_socialnet !blk_BL_spyware !blk_BL_violence !blk_BL_webradio !blk_BL_webtv blk_BL_updatesites all
		redirect www.google.com.br&a=%a&n=%n&i=%i&s=%s&t=%t&u=%u
		rewrite safesearch
		log block.log
	}
}

SG_GENERAL_SETTINGS_001.png_thumb

SG_GENERAL_SETTINGS_002.png_thumb

SG_COMMONACL_001.png_thumb

SG_COMMONACL_002.png_thumb

SG_GROUPACL_001.png_thumb

SG_GROUPACL_002.png_thumb

danilosv.03

Cadê os prints do erro da página e do squid?

Desabilita o "Do not allow IP" no squidguard
Tira todos os IPS do cliente source

ghislenidroid

Squid.conf

# This file is automatically generated by pfSense
# Do not edit manually !

http_port 192.168.1.1:3128 ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=60MB cert=/usr/local/etc/squid/serverkey.pem capath=/usr/local/share/certs/ cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS tls-dh=prime256v1:/etc/dh-parameters.2048 options=NO_SSLv2,NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE

http_port 127.0.0.1:3128 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=60MB cert=/usr/local/etc/squid/serverkey.pem capath=/usr/local/share/certs/ cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS tls-dh=prime256v1:/etc/dh-parameters.2048 options=NO_SSLv2,NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE

https_port 127.0.0.1:3129 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=60MB cert=/usr/local/etc/squid/serverkey.pem capath=/usr/local/share/certs/ cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS tls-dh=prime256v1:/etc/dh-parameters.2048 options=NO_SSLv2,NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE

icp_port 0
dns_v4_first on
pid_filename /var/run/squid/squid.pid
cache_effective_user squid
cache_effective_group proxy
error_default_language pt-br
icon_directory /usr/local/etc/squid/icons
visible_hostname Firewall
cache_mgr giorgioghisleni@gmail.com
access_log /var/squid/logs/access.log
cache_log /var/squid/logs/cache.log
cache_store_log none
netdb_filename /var/squid/logs/netdb.state
pinger_enable on
pinger_program /usr/local/libexec/squid/pinger
sslcrtd_program /usr/local/libexec/squid/ssl_crtd -s /var/squid/lib/ssl_db -M 4MB -b 2048
sslcrtd_children 30
sslproxy_capath /usr/local/share/certs/
sslproxy_options NO_SSLv2,NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE
sslproxy_cipher EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS
sslproxy_cert_error allow all
sslproxy_cert_adapt setValidAfter all

logfile_rotate 0
debug_options rotate=0
shutdown_lifetime 3 seconds
forwarded_for on
httpd_suppress_version_string on
uri_whitespace strip

refresh_pattern -i microsoft.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|psf) 4320 80% 43200 reload-into-ims
refresh_pattern -i windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|psf) 4320 80% 43200 reload-into-ims

cache_mem 256 MB
maximum_object_size_in_memory 256 KB
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA
minimum_object_size 0 KB
maximum_object_size 12 MB
cache_dir ufs /var/squid/cache 1024 16 256
offline_mode on
cache_swap_low 90
cache_swap_high 95
cache allow all
# Add any of your own refresh_pattern entries above these.
refresh_pattern ^ftp:    1440  20%  10080
refresh_pattern ^gopher:  1440  0%  1440
refresh_pattern -i (/cgi-bin/|\?) 0  0%  0
refresh_pattern .    0  20%  4320

#Remote proxies

# Setup some default acls
# ACLs all, manager, localhost, and to_localhost are predefined.
acl allsrc src all
acl safeports port 21 70 80 210 280 443 488 563 591 631 777 901 443 3128 3129 1025-65535 
acl sslports port 443 563 443 

acl purge method PURGE
acl connect method CONNECT

# Define protocols used for redirects
acl HTTP proto HTTP
acl HTTPS proto HTTPS

# SslBump Peek and Splice
# http://wiki.squid-cache.org/Features/SslPeekAndSplice
# http://wiki.squid-cache.org/ConfigExamples/Intercept/SslBumpExplicit
# Match against the current step during ssl_bump evaluation [fast]
# Never matches and should not be used outside the ssl_bump context.
#
# At each SslBump step, Squid evaluates ssl_bump directives to find
# the next bumping action (e.g., peek or splice). Valid SslBump step
# values and the corresponding ssl_bump evaluation moments are:
#   SslBump1: After getting TCP-level and HTTP CONNECT info.
#   SslBump2: After getting TLS Client Hello info.
#   SslBump3: After getting TLS Server Hello info.
# These ACLs exist even when 'SSL/MITM Mode' is set to 'Custom' so that
# they can be used there for custom configuration.
acl step1 at_step SslBump1
acl step2 at_step SslBump2
acl step3 at_step SslBump3
acl whitelist dstdom_regex -i "/var/squid/acl/whitelist.acl"
acl blacklist dstdom_regex -i "/var/squid/acl/blacklist.acl"
acl block_reply_mime_type rep_mime_type -i "/var/squid/acl/block_reply_mime_type.acl"
http_access allow manager localhost

http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !safeports
http_access deny CONNECT !sslports

# Always allow localhost connections
http_access allow localhost

request_body_max_size 0 KB
delay_pools 1
delay_class 1 2
delay_parameters 1 -1/-1 -1/-1
delay_initial_bucket_level 100
delay_access 1 allow allsrc

# Reverse Proxy settings

# Custom options before auth

# Always allow access to whitelist domains
http_access allow whitelist
# Block access to blacklist domains
http_access deny blacklist
# Block access with mime type in the reply
http_reply_access deny block_reply_mime_type
acl sglog url_regex -i sgr=ACCESSDENIED
http_access deny sglog
ssl_bump peek step1
ssl_bump splice whitelist
ssl_bump bump all
# Setup allowed ACLs
# Default block all to be sure
http_access deny allsrc

–----------------UPDATE----------------------
No Proxy Server: General Settings/General, estava desmarcado a opção "Allow Users on Interface" e na ACL's em Allowed Subnets estava vazio. Foi marcar e funcionou a navegação controlada pelo Squid.

Fiz as alterações no squidguard, cliquei em aplicar e ao tentar acessar a página https://www.terra.com.br/ dá a mensagem SSL_ERROR_BAD_CERT_DOMAIN.

Obs. Já desinstalei a CA e instalei novamente na máquina que estou realizando testes.

SQUID_GENERAL_SET_001.png_thumb

SQUID_GENERAL_SET_002.png_thumb

SQUID_GENERAL_SET_003.png_thumb

SQUID_GENERAL_SET_004.png_thumb

SQUID_LocalCache_001.png_thumb

SQUID_LocalCache_002.png_thumb

SQUID_LocalCache_003.png_thumb