Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    SquidGuard Not Blocking Porn Sites

    Scheduled Pinned Locked Moved pfSense Packages
    14 Posts 6 Posters 7.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      ITlomb
      last edited by

      Hi Kom.

      Thanks for your response.

      Did as mentioned. Shallalist def shows the result .. Im using xnxx.com as an example. Looks like its https.
      as for the domain part i think its "porn/domain" according to shallalist website.

      When you say "Do I have HTTPS support properly configured". Then im not sure i understand completely as ive followed all the basic setups on Squid/Squidgaurd.

      Squidgaurd log doesnt show up when testing searching xnxx.com.

      I def do have a whitelist in my ACL- Target catargories.

      I do have SNORT as well, not sure if this is now also to be part of my problem. But even disablins SNORT still same problem. I getting the feeling my Squid is brocken. LOl

      Regards

      1 Reply Last reply Reply Quote 0
      • KOMK
        KOM
        last edited by

        Have you had a look at this official video from Netgate about configuring squid & squidguard?

        https://www.youtube.com/watch?v=xm_wEezrWf4

        1 Reply Last reply Reply Quote 0
        • I
          ITlomb
          last edited by

          Hi Kom

          Yes i have seen this vid, and did wat was suggested, i watched this vid prior to installation.

          1 Reply Last reply Reply Quote 0
          • L
            LostInIgnorance
            last edited by

            Have you flushed the cache on squid prior to doing this test as I have seen it pull from there and not block as it was able to pull the cached copy.

            1 Reply Last reply Reply Quote 0
            • I
              ITlomb
              last edited by

              Greetings LostInIgnorance.

              Am sorry for long delay in response, was on leave,

              Under my Proxy server --> SquidHDisk cache settings --> Clear Disk Cache NOW.
              -- I did clear that Cache and restarted Firewall. Still no difference.

              I did notice Under Dynamic and Update Contect: Cache Dynamic Content radio block is unticked. Not sure if this has means anything or if it needs to be ticked.

              Are there other Squid Cache areas that one needs to also clear?

              Thank you

              1 Reply Last reply Reply Quote 0
              • T
                toimagine
                last edited by

                I too just within the week followed that same video and the firewall isn't blocking sites.
                I followed it to the "T"

                I found another link that talks about setting up the wpad.da file for https. I did this and verified that the test PC is using the routers DNS. Still not blocking. Is there anything else left out of the video that is obvious that we could be missing?

                I may open a thread so that I don't troll yours, but I believe that we might be both having the same issue.

                I'm setting up on a new Netgate SG-3100 Ver. 2.4.3
                Squid 0.4.43_1
                squidGuard 1.16.4

                1 Reply Last reply Reply Quote 0
                • I
                  ITlomb
                  last edited by

                  Hi toimagine.

                  If you do find a solution. please let me know. At the moment i am looking at SNORT as there too are rules to test and hoping that might also solve this issue. When i do , i will revert back with the solution i found.

                  1 Reply Last reply Reply Quote 0
                  • R
                    revengineer
                    last edited by

                    Just for grins, you did go to the squidguard->blacklist tab and hit the download button, right? I once reinstalled pfsense and restored my config and had the same problem.... until I manually downloaded the list in the above manner.

                    1 Reply Last reply Reply Quote 0
                    • I
                      ITlomb
                      last edited by

                      HI Revengineer

                      As an extra effort, i did redownload blacklist, restarted firewall etc.
                      Made sure the Target rule is set to deny.

                      Still no difference.

                      1 Reply Last reply Reply Quote 0
                      • W
                        waqasalisha
                        last edited by

                        squid guard not deduct most of Https website like youtube/facebook and other https secure site. so you need to block these all site from Firewall Rules with IP cidr

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.