Squiguard + SSL + Group ACL



  • I have this kind of setup...

    pfsense + transparent proxy + squiguard + whitelist

    All sites is blocked, and only whitelist work... in this setup i use group acl to permit certain ip to navigate without whitelist
    With http al work as expected..

    When i activated ssl whitelist site work but the group acl dont .. so all pc now is blocked
    I cant understand if i can fix this or simpy dont work as i want....

    This setup is old (2.x era of squid.. only upgraded version in times)...
    maybe i can rewrite all without squiguard and using squi acl?

    squidguard conf:

    src allowedPC {
            ip     192.168.0.117
            ip     192.168.0.104
    }
    
    src blocksites101 {
            ip     192.168.0.0/24
            log block.log
    }
    
    dest whitelist101 {
            domainlist whitelist101/domains
    }
    
    #
    acl  {
            # PC senza Filtri
            allowedPC  {
                    pass all
                    redirect http://mywebserver.mydomain.local/blocked.html
            }
            # Blocco dei Siti
            blocksites101  {
                    pass whitelist101 none
                    redirect http://mywebserver.mydomain.local/blocked.html
                    log block.log
            }
            #
            default  {
                    pass none
                    redirect http://mywebserver.mydomain.local/blocked.html
                    log block.log
            }
    }
    

    Thanks


 

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy