Unofficial E2guardian package for pfSense
-
Marcello
Sometimes we are having problems with uninstall / reinstall
the way to completely delete old configuration settings
How to clean install e2Guardian lines in config.xml?is there progress in blocking file extension
file extension blocking is not working.And do you test the multiwan?
I tried it but it does not work
It would be nice if we could perceive the lan rulesit only detects bypass and works
-
E2guardian does not implement multiwan yet.
And as it is a local daemon, it does not match any lan rule.I'll test file extension and mime types filtering to see what is going on.
-
Marcello,
I will add the photos that I took picture of two blacklist directory and inside of their files..
Thanks again.
-
is there progress in blocking file extension
file extension blocking is not working.I've pushed a fix to file extension. They should work after updating the package.
Mime types I've opened an issue on e2guardian project.https://github.com/e2guardian/e2guardian/issues/380
-
I will add the photos that I took picture of two blacklist directory and inside of their files..
It's difficult to see the difference on pictures, try to send me the blacklist. I can check the difference and tell you if it's easy or a big job.
-
Marcelloc,
Can I make a BlockList Site ACL and ExemptedList Site ACL and then apply both ACL to a group.
I am doing this because ExemptedList might apply to multiple group and BlockList might also apply to multiple group. In this matter, I do need to copy paste the same sites or Banned Config and Exempted Config.
I am confused if it is really necessary if a certain ACL should contain Banned and related Grey and Exemption List.
Is that possible ?
-
Marcello,
Sir, I will work on this thing a little bit more. I found something that it can he helpful for me to solve this problem. Also I will ask a friend who is a developer. Thank you so much for your help. I'll write you from the forum as soon as possible.
-
Marcelloc,
Can I make a BlockList Site ACL and ExemptedList Site ACL and then apply both ACL to a group.
I am doing this because ExemptedList might apply to multiple group and BlockList might also apply to multiple group. In this matter, I do need to copy paste the same sites or Banned Config and Exempted Config.
I am confused if it is really necessary if a certain ACL should contain Banned and related Grey and Exemption List.
Is that possible ?
Just make two ACL's one to be used as default. And one to be used by your specific groups. Personally I have a few, I've kept default to apply ACL to clients outside any groups I've setup, then I've got a kids group with a lot of blocking, then an adult group with more relaxed blocking. All groups need to be assigned to at least one ACL.
-
my confusion is if i create a site acl with enabled ban, disabled grey and exemption the i create another site acl with disabled ban, diabled gre and enabled exemption and apply to a group, will that exemption be enforced while on the other acl, there is no exemption. what is the flow of rule then?
-
my confusion is if i create a site acl with enabled ban, disabled grey and exemption the i create another site acl with disabled ban, diabled gre and enabled exemption and apply to a group, will that exemption be enforced while on the other acl, there is no exemption. what is the flow of rule then?
It will apply the second exemption ACL because it isn't disabled. It's not rocket science and its not too hard to give it a test either. I've been working on a global exception list for common apps that don't work through the proxy. But now that Marcello has added bypass onto the transparent rule, I have been using aliases. It works well for me so far, although the annoying part is packet capturing and finding the remote IP's and domains.
-
E aí Marcelo, tudo tranquilo?
Estou com um probleminha, não sei se é só comigo rsrsrs, estou com um lab virtual do Pfsense em VM e depois do instalar o e2Guardian, não consigo encontrar nenhum pacote para instalação, exemplo, tentei baixar o cron, pfblocker, etc. simplesmente não encontra nada na busca.
-
E aí Marcelo, tudo tranquilo?
Estou com um probleminha, não sei se é só comigo rsrsrs, estou com um lab virtual do Pfsense em VM e depois do instalar o e2Guardian, não consigo encontrar nenhum pacote para instalação, exemplo, tentei baixar o cron, pfblocker, etc. simplesmente não encontra nada na busca.
Instala o repositório novamente, atualizei a estrutura de pastas dos pacotes no github essa semana e provavelmente seu pfSense tá reclamando disso.
fetch -q -o /usr/local/etc/pkg/repos/Unofficial.conf https://raw.githubusercontent.com/marcelloc/Unofficial-pfSense-packages/master/Unofficial.conf
-
is there progress in blocking file extension
file extension blocking is not working.I've pushed a fix to file extension. They should work after updating the package.
Mime types I've opened an issue on e2guardian project.https://github.com/e2guardian/e2guardian/issues/380
Exe file extension blocking problem still exists
there are oddities in logs
Perception as text/html is very strange18.05.19 04:24:23 10.35.10.11 10.35.10.11 https://the.earth.li/~sgtatham/putty/latest/w32/putty.exe TRUSTED Banned MIME file type: text/html GET 302 0 - 1 302 - 10.35.10.11 Default - - - - -
-
Detected as text. :o
-
Looks like E2Guardian v5.1 is in the works!!
- Still getting used to this new forum layout... D:
-
This post is deleted! -
Version 0.5.4 uses 5.1 binaries and fixes the missing transparent forward rules after pfSense restart.
-
how can I put or where can I put ACL SSLPorts and ACL SafePorts for Allowed Ports ?
-
Does anyone know why e2guardian 5 transparent setting does not work right?
When I try to enable transparent mode some web sites will not load. The browser waits awhile and then comes up with error. When I disable transparent mode and put in my own NAT redirect rules for port 80 and 443 everything works perfectly. -
@kenrutt What error are you getting? Transparent proxy works perfectly for me without any issues.