SquidGuard - How does the hierarchy works exactly ?

  • Hi people !

    I’m working as an intern in a school and we just moved from ipfire to pfSense. We are trying to block and allow some domains.

    My idea is to use “Common ACL” to set some targets for EVERYONE. We didn’t set every targets, only the one we care about. We blocked drugs, games, porn etc… but we whitelisted some other targets like YouTube or other useful stuff.
    Then, create some groups to simply add or remove targets BUT to read those from “Common ACL” and apply them IF UNSET IN THE GROUP ! (I mean the “—” setting).

    Me, I thought that “—” would just let unset and use the “Common ACL” setting, as simply as that but NO, it’s not working that way.

    In my created group, EVERYTHING set to “—” will depend on the last target of the list saying “Default access [all]” so I have to re-set the same rules as the “Common ACL” one… Why ? I don’t understand why it works like that ?

    I understand the use of the "Default access [all] in “Common ACL” but I don’t understand it for groups.

    So… Am I doing something wrong ? Or is it the most normal behavior for SquidGuard to totally ignore any group or common settings when creating a group ?

    Thank you in advance for further explanations :)

Log in to reply