Squiguard + SSL + Group ACL
-
I have this kind of setup...
pfsense + transparent proxy + squiguard + whitelist
All sites is blocked, and only whitelist work... in this setup i use group acl to permit certain ip to navigate without whitelist
With http al work as expected..When i activated ssl whitelist site work but the group acl dont .. so all pc now is blocked
I cant understand if i can fix this or simpy dont work as i want....This setup is old (2.x era of squid.. only upgraded version in times)...
maybe i can rewrite all without squiguard and using squi acl?squidguard conf:
src allowedPC { ip 192.168.0.117 ip 192.168.0.104 } src blocksites101 { ip 192.168.0.0/24 log block.log } dest whitelist101 { domainlist whitelist101/domains } # acl { # PC senza Filtri allowedPC { pass all redirect http://mywebserver.mydomain.local/blocked.html } # Blocco dei Siti blocksites101 { pass whitelist101 none redirect http://mywebserver.mydomain.local/blocked.html log block.log } # default { pass none redirect http://mywebserver.mydomain.local/blocked.html log block.log } }
Thanks