Squid: white-list several domains only and block-list the rest



  • Hi everyone,

    Question: How using Squid allow only white-listed domains, and block the rest?

    For example, I would like to allow only "forum.pfsense.org" domain and block the rest. What I should put into blacklist field?
    When I do the following:

    
    whitelist:
    forum.pfsense.org
    
    blacklist:
    .
    
    

    it also breaks access to "forum.pfsense.org". What is wildcard for blacklist field should be in such case?
    I have tried ".*" as well - result the same.

    All changes are done via standard GUI, pfSense v2.3.3

    Thank you in advance!



  • Great! We have the same network plan. Hope someone will help us, as we are new to pfSense as well. We need to whitelist about 20 work-related websites, then block everything else.

    Our pfSense server is working fine right now (online) as a router with DHCP enabled. We already installed Squid Proxy Server and SquidGuard Proxy Filter, and downloaded Shalla and URLBlacklist.com's list. Tried to follow some forum's guide in blocking and whitelisting, but no luck.

    Please, please, please help!


  • Banned

    Something like https://docs.diladele.com/faq/filtering/locked_policy.html ?

    I am not sure why your .* regex does not work in blacklist - most probably the squid conf that is generated expects domain names and NOT domain regex. Then try to specify something like (not tested):

    acl all_others dstdom_regex .*
    http_access deny all_others

    See http://wiki.squid-cache.org/SquidFaq/SquidAcl


Log in to reply