Unofficial E2guardian package for pfSense
-
@kenrutt said in Unofficial E2guardian package for pfSense:
@pfsensation said in Unofficial E2guardian package for pfSense:
I use both source and destination bypass. All work perfectly fine for me. I'm using it through Alias to keep things clean.
Do are you talking about the bypass ip's? I was asking about the bypass on the block page when pressing the "Acknowledge".
Ohh, I was referring to the IP's bit. I couldn't get that working either and didn't have time to investigate. Naturally, forgot. :(
I did go as far as to debugging my own code on the block page and making sure that the "Acknowledge" does generate a bypass key. But the key doesn't appear to work when used. Strange. It will need more digging.
Definitely an issue with the back end bypass code.
-
@pfsensation said in Unofficial E2guardian package for pfSense:
Ohh, I was referring to the IP's bit. I couldn't get that working either and didn't have time to investigate. Naturally, forgot. :(
I did go as far as to debugging my own code on the block page and making sure that the "Acknowledge" does generate a bypass key. But the key doesn't appear to work when used. Strange. It will need more digging.
Definitely an issue with the back end bypass code.Ok. Hey if you figure something out keep me posted.
Thanks a bunch. -
How to configure mitm with pfsense please help me
-
@abhijitmore007 Under "Daemon" tab make sure "Check to enable E2guardian SSL interception" is checked and make sure Cert is selected. Then under the groups tab in group options select and highlight "Filter ssl sites forging SSL Certificates (off)".
-
Can you provide step by step configuration
-
@kenrutt I am using pfsens 2.4.4 and squid with e2d for filtering but squid not integrated with e2d for ssl cert. there is no need of squid for ssl filtering
-
I've updated the install code to use version 3.5.1 and ssl interception.
Motivational Quotes in Hindi -
@kenrutt thank you problem resloved
now https filter is working -
@kenrutt some site get error
-
@abhijitmore007
The error maybe this site requires a secure connection. mitm is a man in the middle attack and will fail with such sites. Yo may need to create an exception rule with a list for those sites to not use mitm. You still can filter the sites but not filter/read the content. -
@abhijitmore007 said in Unofficial E2guardian package for pfSense:
@kenrutt some site get error
I stopped using squid due to problems, try with direct mode without squid. I pretty much have no problems with any site via the browser. The apps I have issues with I have made exceptions for.
-
@pfsensation My experience has been the same. With e2guardian in direct mode things work fairly well. Only a few things I needed to bypass.
-
@kenrutt said in Unofficial E2guardian package for pfSense:
@pfsensation My experience has been the same. With e2guardian in direct mode things work fairly well. Only a few things I needed to bypass.
Yeah, I gave up trying to use Squid. The current implementation wasn't worth my time anyways, since HTTPS content that E2 Guardian decrypts and sees wasn't being added to Squid cache. Furthermore, I noticed a speed improvement when bypassing squid in the setup, the Squid in pfsense is an older version (although I think Marcelloc has a newer one in his repo).
I also had other issues with Squid, such as not generating fake certs properly (when using the SSL intercept feature). The certs didn't have a Subject alternative name which caused a tonne of sites and stuff to fail.
On top of that, nowadays browsers do a really good job of caching things locally. The benefits have become quite minimal, unless your bandwidth is completely trash and you have users visiting the same content over and over.
If @marcelloc has a newer version of Squid, that doesn't have the certs issue and slow down issue. I may give it a shot when I have time. But so far I'm pretty content with E2 Guardian, I'm using it at home with no issues. Only thing missing is an updated word list and a good blacklist that's maintained well.
-
There is one more issue when how to configure e2g for ad authentication??
i am configure squid for that but when we allow in e2g transparent proxy there is error occurs Proxy authentication error...... -
Good day Marcelloc,
E2Guardian has antivirus feature. I just want to ask, how do you know or check that the antivirus is running and if the antivirus is up to date ?
In E2Guardian, you can setup the frequency on updating blacklist url.
Can you possibly add feature to check if the antivirus service is running and can be started or restarted and updated. I don't know if it make sense because I dont know how you program how it works.
I just really want to know if the antivirus service is running and if it is up to date.
-
I found out that clamd is not starting when e2guardian is stopped and restarted.
What can be done about this ? Can we do our own adjustment somewhere ?
-
after implantation https filter I want to filter search keyword filter but Google search keyword filter not working
Add keyword in phases but client not block by keyword -
hello,
i cant block youtube mobile (android or ios applications). e2guardian blocks youtube at pc but on the phones it cant block. any ideas?
-
@ugurk Hi. In squidguard I made a category that I called videos, there I put all these domains that contain videos, so I block almost everything and every day I add other domains:
dailymotion.com googlevideo.com i.ytimg.com m.youtube.com metacafe.com netflix.com nflxvideo.net screen.yahoo.com skype.com vimeo.com vine.co 3r2---sn-j5caxupj5-nwvl.googlevideo.com r1---sn-5hoxuj5cax-wv6.googlevideo.com r1---sn-hp57kn6l.googlevideo.com r1---sn-hp57knsl.googlevideo.com r1---sn-hp57yn7y.googlevideo.com r1---sn-hp57yne7.googlevideo.com r1---sn-hp57ynes.googlevideo.com r1---sn-j5caxupj5-nwve.googlevideo.com r1---sn-j5caxupj5-nwvl.googlevideo.com r2---sn-5hoxuj5cax-nwv6.googlevideo.com r2---sn-hp57kn7z.googlevideo.com r2---sn-hp57knlr.googlevideo.com r2---sn-hp57knzz.googlevideo.com r2---sn-hp57yne6.googlevideo.com r2---sn-hp57ynee.googlevideo.com r2---sn-hp57ynez.googlevideo.com r2---sn-j5caxupj5-nwve.googlevideo.com r2---sn-q4f7sn7k.googlevideo.com r3---sn-5hoxuj5cax-nwv6.googlevideo.com r3---sn-hp57kn7s.googlevideo.com r3---sn-j5caxupj5-nwve.googlevideo.com r3---sn-j5caxupj5-nwvl.googlevideo.com r4---sn-5hoxuj5cax-nwv6.googlevideo.com r4---sn-j5caxupj5-nwve.googlevideo.com r4---sn-j5caxupj5-nwvl.googlevideo.com r5---sn-hp57knls.googlevideo.com r5---sn-hp57ynez.googlevideo.com r5---sn-j5caxupj5-nwve.googlevideo.com r5---sn-j5caxupj5-nwvl.googlevideo.com r6---sn-hp57kn7l.googlevideo.com r6---sn-hp57knz6.googlevideo.com
Buena suerte -
@cova16 ty for response. ill try it asap
-
@ugurk Hello, I think mobile youtube app uses different port number. Not sure which port. Use packet capture and then export to wire shark to find out.
-
good morning marcello
i have execute fetch in pfsense 2.4.4 actual ver
but now i dont view any program for install ( many info in attach image)
how can i do ?
Thanks
Alberto -
@pfsensation @marcelloc
does anyone had a success in setting up e2g in multiwan environment?
currently having latest pfsense + latest e2g...when i enable e2g all traffic are routed to "default" wan... -
Hi to everybody, my name is Marco and i'm a new in this forum.
I used pfsense from many years as simple router, firewall, openvpn server and load balancing server.Now i'm trying to proxy and filter contents with Squid and e2guardian.
First of all i want to thanks @marcelloc for his great work with the porting of e2guardian. Marcello i hope that you and other users can help me, i'm trying to obtain my goal from many days, with no results.I have a pfsense box with Squid and e2guardian installed. In the same lan there is a samba4 LDAP.
My goal is to have from 2 to 4 users0s groups in LDAP that can browse the web with LDAP authentication on proxy with different e2guardian ACL based on content list (like Shalla's Blacklist).
The situation now is that i can autenthicate with the LDAP users but e2guardian seems not to recognize the correct LDAP group and so the applied filter list is wrong. Can you help me?
If is not possible is ok to have just 2 list: the first, for unauthenticated users, with filtered navigation, and the second, for some autenticathed ldap users, with unfiltered navigation.
Hope @marcelloc o someone can help me.
Good work, and byeee ;-)
-
@Albertopfsense
Same problem here.@Albertopfsense I found how to revert to show official packages again.
Just execute the command below with SSH access or by Diagnostic | Command Prompt.
rm /usr/local/etc/pkg/repos/Unofficial.conf -
@Albertopfsense Before Patch, after fetch apply. Later pfsense pc restart.
-
@kenpachizaraki E2guardian not work multiwan, unfortunately. Only failover working.
-
Hello all,
Hope all are safe and healthy
Can anyone provide a binary release of e2g 5.3.4? @marcelloc ?
Thanks.
-
@marcelloc Hi,
I am getting below error when I am opening the social media websites in my network.
Once I switch to my home network I can easily access social media website
PFA of an error message .
-
@yogeesh said in Unofficial E2guardian package for pfSense:
@marcelloc Hi,
I am getting below error when I am opening the social media websites in my network.
Once I switch to my home network I can easily access social media website
PFA of an error message .If you have MITM enabled, you need to install the CA certificate on the client machine. As E2 Guardian essentially breaks the HTTPS encryption.
-
Is there a way to download the E2Guardian package and install it offline ?
-
Hi everyone, I am having an issue maybe some of you guys have faced this same behavior,
my e2g just randomy stopped listening to the config, if I change an IP on a group the change does not take effect, If I add a new site to an ACL it does not take effect, anyone with this kind of issue? -
@la6er said in Unofficial E2guardian package for pfSense:
Hi everyone, I am having an issue maybe some of you guys have faced this same behavior,
my e2g just randomy stopped listening to the config, if I change an IP on a group the change does not take effect, If I add a new site to an ACL it does not take effect, anyone with this kind of issue?Enable the soft restart option, press apply and see if that helps.
-
@la6er
It seems when making changes to an IP in a group. I need to stop E2G and restart under Status\Services. I have very little trouble with E2G stopping on me. In fact I do not even enable the watchdog feature. It just runs. It does take some tweeking when first setting up E2G. Make sure to go through the various lists and turn off or delete entries that reference any file that does not exist. I found it very helpful to SSH into router with WinSCP and modify some config files directly. -
Hi all,
I'm using E2Guardian 5 from Unofficial Repository, not as transparent proxy and I'm getting some "The site requested does not exist" for simple local websites.
All filters were disabled, for tests.
Log error shows "2021.07.05 08:21:04 192.168.0.2 http://portal.mydomain.local 403 192.168.0.2 Default NETERROR Exceção do sítio confere. (Site on Exception list)"The local site is working when accessed by Squid, or directly, does someone here have some idea of how to fix it? I was wondering if the problem is something DNS related but I can't find a way of how to force DNS servers on E2Guardian and taking a look at DNS logs, everything appears to be Ok.
Can someone help?
Thanks in advance.
-
@drmwndr said in Unofficial E2guardian package for pfSense:
Hi all,
I'm using E2Guardian 5 from Unofficial Repository, not as transparent proxy and I'm getting some "The site requested does not exist" for simple local websites.
All filters were disabled, for tests.
Log error shows "2021.07.05 08:21:04 192.168.0.2 http://portal.mydomain.local 403 192.168.0.2 Default NETERROR Exceção do sítio confere. (Site on Exception list)"The local site is working when accessed by Squid, or directly, does someone here have some idea of how to fix it? I was wondering if the problem is something DNS related but I can't find a way of how to force DNS servers on E2Guardian and taking a look at DNS logs, everything appears to be Ok.
Can someone help?
Thanks in advance.
Definitely something to do with your DNS setup, are you using DNS resolver? I've got internal sites too and haven't run into any issues although I'm no longer using squid.
-
@pfsensation said in Unofficial E2guardian package for pfSense:
Definitely something to do with your DNS setup, are you using DNS resolver? I've got internal sites too and haven't run into any issues although I'm no longer using squid.
Hi @pfsensation. I have Bind installed on my pfsense box as DNS Server. I also have a NAT and a Firewall Rule redirecting all LAN1 Interface Traffic to port 53 to my pfSense box.
Is it necessary to enable and set pfSense DNS Resolver? Looks like e2guardian is bypassing this rule and looking directly on outside DNSs. -
@drmwndr said in Unofficial E2guardian package for pfSense:
@pfsensation said in Unofficial E2guardian package for pfSense:
Definitely something to do with your DNS setup, are you using DNS resolver? I've got internal sites too and haven't run into any issues although I'm no longer using squid.
Hi @pfsensation. I have Bind installed on my pfsense box as DNS Server. I also have a NAT and a Firewall Rule redirecting all LAN1 Interface Traffic to port 53 to my pfSense box.
Is it necessary to enable and set pfSense DNS Resolver? Looks like e2guardian is bypassing this rule and looking directly on outside DNSs.Unfortunately I don't use BIND either, but when you run nslookup on the client device, can it resolve your internal domains? Another gotcha is DNS over HTTPS/TLS, make sure that's disabled in the browser and lock down port 853 from LAN1.
-
@pfsensation said in Unofficial E2guardian package for pfSense:
@drmwndr said in Unofficial E2guardian package for pfSense:
@pfsensation said in Unofficial E2guardian package for pfSense:
Definitely something to do with your DNS setup, are you using DNS resolver? I've got internal sites too and haven't run into any issues although I'm no longer using squid.
Hi @pfsensation. I have Bind installed on my pfsense box as DNS Server. I also have a NAT and a Firewall Rule redirecting all LAN1 Interface Traffic to port 53 to my pfSense box.
Is it necessary to enable and set pfSense DNS Resolver? Looks like e2guardian is bypassing this rule and looking directly on outside DNSs.Unfortunately I don't use BIND either, but when you run nslookup on the client device, can it resolve your internal domains? Another gotcha is DNS over HTTPS/TLS, make sure that's disabled in the browser and lock down port 853 from LAN1.
Yep, at client device it look up locally, but on pfSense box, it goes directly to External DNS.
Will take a better look at DNS Setup.Thank you so much!
-
With 2.5.2-RELEASE the 25_unofficial_packages_list.patch has issues
See
https://github.com/marcelloc/Unofficial-pfSense-packages/issues/94
