SquidGuard package TEST

shreckbull

no bug report needed !!!

look here :
http://forum.pfsense.org/index.php/topic,5388.0.html

srs

Hello guys, first I'd like to congratulate you for the excellent work (i've read the entire topic) on squidguard;

2nd, I'd like to know when can we expect to have SG on the main package list of Pfsense? in 1.2 final release can we expect SG? I may be wrong, but SG seems fine to be included in pfsense main package list today, with 1.2-beta2 out…. how about it??

I know you can tell me that I always may install it manually, as you have done, but I'm new on pfsense and bsd culture and would not like to damage my install (as it would certainly happen)

congratulations one more time and please, that you may consider place SG on main packages now :D

thanks a lot

srs

dhipo

hi all,
i was out a few days, because was sick with gripe, but i back …..

i'm running SG in 1.2-BETA-1-TESTING-SNAPSHOT-07-02-2007
built on Wed Jul 4 20:13:49 EDT 2007
but som tricks was necessary.
before upgrade must be copy the global.inc (the modified version to install SG)
to global.inc.something
i did upgrade.. on reboot SG was broken...
copy again global.inc.something to global.inc(the modified version to install SG)..
go to Instaled packages and reinstall...
works good ...

srs

still dont understand how to install SG on 1.2-beta-x…. :'(

how can we expect this package in official packages list, within pfsense, for other users to test??

thanks

srs

dvserg

@srs:

still dont understand how to install SG on 1.2-beta-x…. :'(

how can we expect this package in official packages list, within pfsense, for other users to test??

thanks

srs

http://forum.pfsense.org/index.php/topic,5244.msg31615.html#msg31615

dhipo

oh … S#it...

an strange error

on click in "Proxy Content Filter" show this message ...

Fatal error: Call to undefined function: squidguard_before_form() in /usr/local/www/pkg_edit.php(86) : eval()'d code on line 1

on 1.2-BETA-1-TESTING-SNAPSHOT-07-02-2007

dhipo

@dvserg:

@srs:

still dont understand how to install SG on 1.2-beta-x…. :'(

how can we expect this package in official packages list, within pfsense, for other users to test??

thanks

srs

http://forum.pfsense.org/index.php/topic,5244.msg31615.html#msg31615

Serg … this is an Brazilian Guy ...
Let me help him ... BR portuguese...
SRS ... i will send an private msg ..

dvserg

@dhipo:

@dvserg:

@srs:

still dont understand how to install SG on 1.2-beta-x…. :'(

how can we expect this package in official packages list, within pfsense, for other users to test??

thanks

srs

http://forum.pfsense.org/index.php/topic,5244.msg31615.html#msg31615

Serg … this is an Brazilian Guy ...
Let me help him ... BR portuguese...
SRS ... i will send an private msg ..

Big thanks..
Now i have little free time :'( (i have examination near 2 week's)

dhipo

@dhipo:

oh … S#it...

an strange error

on click in "Proxy Content Filter" show this message ...

Fatal error: Call to undefined function: squidguard_before_form() in /usr/local/www/pkg_edit.php(86) : eval()'d code on line 1

on 1.2-BETA-1-TESTING-SNAPSHOT-07-02-2007

i downloaded new squidguard*.xml and inc files using fetch command….. error go away...
but i'm running on neww trouble

error with localhost acl ....

to temporaly fix i removed this lines

// fix bug with transparent proxy
$sgconf[] = "dest localhost { # fix localhost access problem on transpa
rent proxy ";
$sgconf[] = "\t ip 127.0.0.1";
$sgconf[] = "}";
$sgconf[] = "";

dvserg

Yes - this wrong code. I fix this near time

dcabot

Has development on this stopped?

dcabot

A couple of issues that I am seeing:
MINOR
The run status always says STOPPED
When you install SquidGuard, it does not require Squid. dependency failure?

PROBLEMS
After installing SquidGuard the first thing I do is download the latest blacklist.

On the General Settings tab
I click on ENABLE and I click the checkbox to enable the BLACKLIST. I click on SAVE

I click on the TIMES tab and create an entry for ALWAYS

I click on the DEFAULT tab. I set the default time to ALWAYS. I click on porn and I click to deny access. I click SAVE. Under Default Redirect I put 403. I go back to the General Settings tab and click APPLY.

Then I try to see a porn page that exists in the /var/db/squidGuard/porn/domains file. It was not blocked.

RECOMMENDATIONS
On the General Settings tab, under Blacklist, pls add the appropriate fields to allow automated updates (monthly, weekly, daily) and allow a few preset locations (Shalla Secure Services, MESD, etc). I am borrowing ideas from the urlfilter developed by Marco Sondermann for IPCop.

dhipo

@dcabot:

A couple of issues that I am seeing:
MINOR
The run status always says STOPPED
When you install SquidGuard, it does not require Squid. dependency failure?

PROBLEMS
After installing SquidGuard the first thing I do is download the latest blacklist.

On the General Settings tab
I click on ENABLE and I click the checkbox to enable the BLACKLIST. I click on SAVE

I click on the TIMES tab and create an entry for ALWAYS

I click on the DEFAULT tab. I set the default time to ALWAYS. I click on porn and I click to deny access. I click SAVE. Under Default Redirect I put 403. I go back to the General Settings tab and click APPLY.

Then I try to see a porn page that exists in the /var/db/squidGuard/porn/domains file. It was not blocked.

RECOMMENDATIONS
On the General Settings tab, under Blacklist, pls add the appropriate fields to allow automated updates (monthly, weekly, daily) and allow a few preset locations (Shalla Secure Services, MESD, etc). I am borrowing ideas from the urlfilter developed by Marco Sondermann for IPCop.

ok

squid must be installed to squidguard works

second … it's necessary download blacklists to squidguard works...

if you want an block everytime it's not necessary use time definition ..

let'me know more about your issue .

dvserg

2 dhipo: Thanks for you replay. :)

BlackList not obligatory. You can use you own destination rules;

–-----------------------
In the near future finally place corrections for "transparent proxy problem"
I have to do(make) one uncomfortable thing, which will require reconfiguring the package when change internal IP (will need click Button "Apply") :)

dhipo

ok …
customized destinations can be combined with default blacklists.

use blacklists mean .. to block sites ... you need or blacklists, or custom destinations , or both ..

srs

Here I have the same: squidguard installed and configured but do not block porn site taken on file /var/db/squidGuard/porn/domains…

My config is the most simple possible, no time, only default acl blocking porn...

any idea?

srs

dvserg

Please answer on some question:

you install package from official list ?
you don't update blacklist from internet? (if update - where blacklist url)
what url's non blocked?

ps
need check exists this url on block list or no.

srs

@dvserg:

Please answer on some question:

you install package from official list ?

you don't update blacklist from internet? (if update - where blacklist url)

what url's non blocked?

ps
need check exists this url on block list or no.

Yes, package installed from official list
Yes, downloaded black list from internet (http://squidguard.mesd.k12.or.us/blacklists.tgz)
I tested with one url taken from the file /var/db/squidGuard/porn/domains, line 600000, if I'm not wrong; it should work for any of that urls, isnt??

thanks

ps: its strange, cause it seems SG is running: my processor load is up to 51% (dual core, pentium D)!!!

dvserg

Also

squidGuard started (looking main package page for this or Services menu)?
squid transparent mode?
and can you post squidGuard config? (from 'Log' page) (to pm for example)

srs

@dvserg:

Also

squidGuard started (looking main package page for this or Services menu)?

squid transparent mode?

and can you post squidGuard config? (from 'Log' page) (to pm for example)

Squidguard running, from services menu
proxy in transparency mode since before sg
here goes the config:
/usr/local/etc/squidGuard/squidGuard.conf

============================================================

SquidGuard configuration file

This file generated automaticly with SquidGuard configurator

(C)2006 Serg Dvoriancev

email: dv_serg@mail.ru

============================================================

logdir /var/squidGuard/log
dbhome /var/db/squidGuard

acl {
default {
pass none
redirect http://127.0.0.1/sgerror.php
}
}

There is something wrong with this config, here I cannot see my source (Lan) and any configuration about blacklist…

is there any way of reseting sg config?