• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Help needed: squid blocks antivirus updates, http://www.iblocklist.com/lists.php

Scheduled Pinned Locked Moved Cache/Proxy
4 Posts 2 Posters 1.3k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • G
    GL
    last edited by Mar 31, 2017, 9:35 AM

    Hello,
    I 've just installed and configured pfsense+snort+squid+pfblocker.

    Everything works fine with the exception of squid, which blocks the updates of my antivirus (Avast), the access to http://www.iblocklist.com/lists.php for pfblocker, etc.
    For all other web navigations, squid works fine.
    Squid is configured as transparent proxy and ClamAV is active.

    I am new to pfsense and I would like to ask help to the community.

    Actions taken without success:

    1. Squid is the problem, because if I stop squid services everything works fine
    2. Put in whitelist Avast update servers (they are listed in a specific file, I copied in squid whitelist all servers)
    3. In Squidguard put in allow all categories with the exception of hacking sites (deny).
    4. Stop ClamAV and leave Squid on.

    Any kind help or suggestion? If needed, pls let me know which part of my configuration you need and I will provide it.

    Thanks in advance to everybody who will help me.

    Bye,

    GL

    1 Reply Last reply Reply Quote 0
    • G
      GL
      last edited by Mar 31, 2017, 9:49 AM

      By the way, as further info, another kind of websites stopped are the speed tests…

      1 Reply Last reply Reply Quote 0
      • I
        Impatient
        last edited by Apr 1, 2017, 4:11 PM

        Are you sure it isn't Snort blocking the speed test site's?

        Avast has the option to define the proxy setting's under setting's,update's,Proxy setting's.

        1 Reply Last reply Reply Quote 0
        • G
          GL
          last edited by Apr 3, 2017, 8:33 AM

          Hello,
          many thanks for your reply.
          With snort service up and Squid down everything was fine. So I was sure the problem was with Squid and some setting.

          During the week end i found the problem and I report the solution for any newbie like me.

          The problem was in SquidGuard and the standard categories: you have four option per each category, -, allow, deny, whitelist.
          I configured all categories with deny or allow. For categories for which you are not interested if you put the - option and populate with deny only the ones you want to block, then everything works fine.

          I'm still missing the reason and as a newbie it is still not very clear to me the difference between the - option and the allow.
          In other professional appliances, you must put the option allow or by default it is intended as blocked.

          As general experience after installing pfsense, what I miss is a comprehensive manual where all options are described and related effects are listed. For the rest, this firewall is great and has nothing less than several professional appliances.

          1 Reply Last reply Reply Quote 0
          1 out of 4
          • First post
            1/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received