Squid redirect Page

J7529 · Aug 6, 2018, 4:01 PM

Hello,

I have squid and squid guard set up and everything is working as it should be but when I go to a blocked site such as Dropbox I recieve a squid error for "Unable to determine IP address from host name "http"" (See below)

instead of my own custom blocked screen which I have created under SquidGuard so it would redirect if the website is blocked.

Is there a way where I can have the blocked page always be the custom page which I created?

Thanks

stephenw10 · Aug 6, 2018, 5:46 PM

That's because it's not a blocked page it's a bad hyperlink.
Wherever you're browsing to that from has probably added https incorrectly or maybe the : is missing from the link. Either way it's trying to resolve http as a url and failing.

Steve

J7529 · Aug 9, 2018, 8:37 AM

Oh right okay,

When I unblock websites such as Dropbox I am able to get to them without any issue

stephenw10 · Aug 12, 2018, 6:48 PM

Does your blocked site error page work correctly for other sites? That could be Squid attempting to apply a bad re-direct.

Is that the only https blocked page?

Whatever is causing that Squid is trying to resolve 'http' as an fqdn which will always fail.

Steve

J7529 · Aug 13, 2018, 9:56 AM

It shows the squid block page for mostly all of the blocked sites but only shows the squidguard block page for example:

dropbox.com

dropbox.com/login

This also vary's from browser to browser on IE the top error comes up all the time and on Firefox both appear

stephenw10 · Aug 13, 2018, 1:45 PM

Well, it's hard to say without seeing the config and logs etc but in both cases Squid is trying and failing to resolve http and https as a host name which clearly it isn't. Something is passing that Squid to resolve or something is Squid/Squidguard is configured with a URL and should be an FQDN.

Steve

J7529 · Aug 22, 2018, 2:21 PM

So I have created another pfSense machine so I can do testing and it seems that the reason I am getting the top error is because I have the "Enable SSL filtering" on.

Am I missing something elsewhere as this option is enabled?

Thanks,
Jord

stephenw10 · Aug 24, 2018, 5:40 PM

Try setting the redirect mode in Squidguard to ext url move. You will have to redirect to something, you might create a page for that.

I hit that same error recently and that worked around it.

Steve