Squid?
-
Hello,
I have successfully installed Snort and Pfblocker NG.
I want to install Squid which as far as I understand has Clam AV 'built in' so then I can get some anti virus at router level.
My internet connection is UK Virgin media 100 Mbit cable and Pfsense a Chinese qotom i5-5250U, 8GB RAM and Kingston 120GB SSD.
Do I need Squid? If I do then how do I install and configure it? -
Did you read thru the documentation?
https://docs.netgate.com/pfsense/en/latest/cache-proxy/index.html
Jeff
-
Thanks. I did. Is there any difference or effectiveness between Squid or Pfblocker?
-
They do 2 different things:
Squid - cache/proxy with some filtering capabilities
pfBlockerNG - country and IP blockingSquid info (August 2018):
https://turbofuture.com/internet/Intercepting-HTTPS-Traffic-Using-the-Squid-Proxy-in-pfSenseHere's a pfblocker hangout video (March 2018):
https://www.netgate.com/resources/videos/pfblockerng-on-pfsense.htmlJeff
-
Thanks,
I want to have an install of Squid, for its anti virus capability.
-
for its anti virus capability.
It's capable for sure.
You are aware of the fact that nearly all fraffic is TLS based these days, which means : the router firewall can't "see" the actual traffic, the payload.
And, as far as I know, virus are not transmitted in the Ethernet frame headers.
Also, TLS traffic is often marked as non cacheable.I advise you really to look around and see what Squid can really do for you.
-
for its anti virus capability.
It's capable for sure.
You are aware of the fact that nearly all fraffic is TLS based these days, which means : the router firewall can't "see" the actual traffic, the payload.
And, as far as I know, virus are not transmitted in the Ethernet frame headers.
Also, TLS traffic is often marked as non cacheable.I advise you really to look around and see what Squid can really do for you.
Thanks. It looks like I will have to look elsewhere. Any hints?
