SquidGuard: Ignores blocklist domains when redirecting (301/302)

guru_meditation

It is a typical scenario for tracking sites that when you click on a link, you get redirected several times before arriving on the real site.

In my case it was econda-monitor.de -> tradedoubler.com -> shopping site.
Both Econda and tradedoubler domains are blacklisted under "Domains list" in SquidGuard. Nevertheless, when the browser reveives a

HTTP/1.0 302 Moved Temporarily
Location: http://www.econda-monitor.de/link/st?emkd=12345678&pbid=1&advid=200&campaign=&target=http%3A%2F%2Fclkde.tradedoubler.com%2Fblah

and starts the redirect:

GET /link/st?emkd=12345678&pbid=1&advid=200&campaign=&target=http%3A%2F%2Fclkde.tradedoubler.com%2Fblah HTTP/1.1
User-Agent: Opera 10.63 (X11; Linux i686; U; en)
Host: www.econda-monitor.de
Accept: text/html, application/xml;q=0.9, application/xhtml+xml, image/png, image/jpeg, image/gif
Accept-Language: en-US
Accept-Charset: utf-8, utf-16, iso-8859-1;q=0.5, *;q=0.1
Accept-Encoding: deflate, gzip, x-gzip, identity, *;q=0
Connection: Keep-Alive

… SquidGuard seems to sleep and does not block the request. The Econda webserver would respond with a further 302 to tradedoubler.com, which is not blocked either. Only when I add both domain names in "Expressions", they get blocked.

Any one had the same problems? Is this a bug, design flaw or whatever?

pfsense is 1.2.3, Squid is version 2.7.9_4, SquidGuard 1.3-03.

dvserg

And Configs/Screenshots ?