Squidguard ACL help [Solved]
-
Some background.
I have pfsense runnign with HA proxy. My internal sites are behind it and everything is working as it should.
I am also running Squid Proxy (Transparent) for mostly all VLANs and that is working without issue.
Right now if you are on my IoT VLAN, you have access to go to any of my internal sites. The squid proxy is doing what it should do.
I have SG enabled and i have 2x ACLs.
Permit vault.example.com
Deny example.com
My thinking goes is that i do want my password manager (vault) accessible through the proxy and everything else should be dropped.
My group ACL target list shows the following
The problem is that this doesnt work. All internal sites are still accessible.
Whats Odd is that in the Blocked log file you see the request hitting the block ACL but its still permitted through
I do realize i could rely on firewall rules instead by having all RFC1918 address bypass the proxy but i dont want to do that.
What am I missing?Those long nights of tshooting the issue and it was a crazy misconfiguration on my part. I did have Bypass Proxy for RFC1918 enabled but i thought i had it disabled.
While typing out my post here i double checked all my settings.
Problem solved. sheesh....