Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Using Group ACL with Common ACL

    Cache/Proxy
    1
    1
    212
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      scosta
      last edited by

      Hello, I'm configuring squidGuard and I'm facing this problem:

      I configured the Common ACL as such: !social_media all
      where "social_media" contains the following domains: facebook.com twitter.com whatsapp.com instagram.com

      This way all computers on the network have only these domains blocked, okay. But I have computers in which some of these sites, like Facebook, should be whitelisted, so I created this Group ACL for my IP 192.168.1.100: ^facebook all
      where "facebook" contains the domain facebook.com

      Even though I ignored the "social_media" target in the Group ACL, it whitelists everything, not only facebook.com. If instead of ignoring (or allowing, it doesn't matter) social_media I deny it (^facebook !social_media all), then it works as expected. It seems the Common ACL is completely overridden by Group ACLs, even when they're set to ignore a target. What am I doing wrong?

      This is my squidGuard.conf file: https://pastebin.com/mgd59TNb

      Thanks in advance.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.