(SOLVED) pfSense + SQUID + SquidGuard (SquidGuard not bloking all)

rec · Jul 5, 2019, 6:54 PM

Hi there.

I have a new pfSense installation (version 2.4.4-RELEASE-p3 (amd64)).

I configured the SQUID with LDAP (Windows Server 2016), it works.

I configured the SquidGuard in "Common ACL" to DENY default access.

If the Windows use the Proxy = Block, it's OK
If the Windows dont use the Proxy = Free Access.

I need to block all the client who don't use the Proxy.

What I doing What I doing errored?

Best regards,

stephenw10 · Jul 7, 2019, 1:44 PM

We can't read that first screenshot. Can you include that at higher resolution?

Steve

rec · Jul 9, 2019, 1:28 PM

Hello, my problem continuous.

In bellow more images.

Regards,

kiokoman · Jul 9, 2019, 1:36 PM

if you want to enforce the use of the proxy you need to activate 'Trasparent HTTP Proxy'

stephenw10 · Jul 9, 2019, 3:09 PM

Or if you just need to block clients who are not using the proxy just add deny rules on LAN for destination ports 80 and 443.

The anti-lockout rule will still allow access the webgui. Clients will only be able to use http/s whilst going via the proxy.

Steve

rec · Jul 10, 2019, 3:42 PM

My problem has been solved.

Best regards,

spyshagg · Nov 22, 2019, 4:56 PM

@stephenw10, thanks.

My problem has been solved.

Best regards,

How?

stephenw10 · Nov 22, 2019, 4:57 PM

Presumably by blocking ports 80 and 443 directly since they were not using a transparent proxy.