Squid: white-list several domains only and block-list the rest

andrewg

Hi everyone,

Question: How using Squid allow only white-listed domains, and block the rest?

For example, I would like to allow only "forum.pfsense.org" domain and block the rest. What I should put into blacklist field?
When I do the following:

whitelist:
forum.pfsense.org

blacklist:
.

it also breaks access to "forum.pfsense.org". What is wildcard for blacklist field should be in such case?
I have tried ".*" as well - result the same.

All changes are done via standard GUI, pfSense v2.3.3

Thank you in advance!

baloy4

Great! We have the same network plan. Hope someone will help us, as we are new to pfSense as well. We need to whitelist about 20 work-related websites, then block everything else.

Our pfSense server is working fine right now (online) as a router with DHCP enabled. We already installed Squid Proxy Server and SquidGuard Proxy Filter, and downloaded Shalla and URLBlacklist.com's list. Tried to follow some forum's guide in blocking and whitelisting, but no luck.

Please, please, please help!

sichent

Something like https://docs.diladele.com/faq/filtering/locked_policy.html ?

I am not sure why your .* regex does not work in blacklist - most probably the squid conf that is generated expects domain names and NOT domain regex. Then try to specify something like (not tested):

acl all_others dstdom_regex .*
http_access deny all_others

See http://wiki.squid-cache.org/SquidFaq/SquidAcl