Firewall rules and squid



  • I have several ips that are in an alias called Blacklist, and I have rules setup on each of the interfaces to reject traffic from those ips.

    This works on all of the subnets except where squid is configured to act as a transparent proxy. On those interfaces, users can access websites on any ip that is blacklisted.

    Any suggestions?

    I'm aware that I can block ips from within squid, but that's not what I'm looking for.

    • Justin

    PS This has been discussed here with no resolution. I'm posting again because this is a serious security issue, and resolution is important.


Log in to reply