Squidguard with differrent rules for multiple Vlans
-
Hello All,
Is it possible to configure squidguard with multiple rules for multiple Vlans in pfsense?
-
Yes.
You can use group ACLs to define rules for traffic coming from a particular subnet. So just setup ACLs for each VLAN/subnet.
Steve
-
So in the squid general settings I should select all the vlan for proxy interface and in the Squidguardproxy filter I should configure the ACL for each Vlan?
Is that the right method?
-
Yes. That will allow you to select different filters for each subnet.
Steve
-
@stephenw10 Hello Stephen,
Thank you for your reply. I tried to do a test by configuring squidguard on a single vlan. I configured it as a transparent proxy and allowed those ports to the firewall but the even the internet is not working.
-
How is it not working?
We will need to see screenshots of your settings etc to have any hope of seeing the problem here.
Steve
-
@stephenw10 I reconfigured it and now it is working fine. But the internet is horribly slow. When I do a speed test I get almost 85Mbps. But it takes a long time to open any page.
-
Make sure the clients and Squid are both using the same DNS servers that is biggest cause of issues with Squid. So usually that would be both using Unbound in pfSense.
Check the Squid logs and system logs for errors.
Also: https://www.netgate.com/docs/pfsense/cache-proxy/squid-troubleshooting.html
Steve
