Can I have a special user to bypass my blocklist in squid?

persia1364 · Dec 10, 2022, 7:15 AM

So I have configured my pfsense+squid (with SSL interception) server and now my users connect to internet via squid proxy. But now there are some users like managers should access to some websites that I blocked them in squid blacklist. So is there any way to let some users bypass blacklist? For example create a group like users and managers. users group should obey blacklist and managers group should allowed to access.

KOM · Dec 10, 2022, 7:29 PM

@persia1364 The same page with the Squid Blacklist has an Unrestricted IPs list. Add their IPs to that list.

persia1364 · Dec 11, 2022, 3:44 AM

@kom Thank you for your reply. If I could set user name instead of IP address it was a good solution but now users can change their IP address and can bypass my blacklist!
Is there any way I can set user name or PC MAC address for unrestricted IPs?

KOM · Dec 12, 2022, 2:25 PM

@persia1364 Yes I believe that you can install Squidguard, configure the LDAP integration and then filter based on usernames but this is not simple and I have not tried it myself.