SquidGuard package TEST

dhipo · Jun 24, 2007, 6:44 PM

is this ….

The order of "ACL" is important ...
look this note:

Note: The client groups are matched in the order they are defined.

we need an control to ordering "ACL"s

dvserg · Jun 24, 2007, 6:53 PM

is this ….
The order of "ACL" is important ...
look this note:
Note: The client groups are matched in the order they are defined.
we need an control to ordering "ACL"s

Client group this is Sources blocks
Do you have possible test config with swithching sources blocks? (manually swap and restart squid). I will be able to test tomorrow :-\

dhipo · Jun 24, 2007, 7:04 PM

no …. source or destinations order is NOT important ....

important is the ACL order .... blocking is made based on order of ACL...

dhipo · Jun 24, 2007, 7:13 PM

i did test order of acl and this is real …. .ACL order is important...

dvserg · Jun 24, 2007, 7:42 PM

@dhipo:

i did test order of acl and this is real …. .ACL order is important...

I now have test via remote access on my work next simple config


src_myip_on = myip
src_myip_off = myip

acl {
  default .... none // all block
  src_myip_on ... all // all pass
  src_myip_off ... none //all block
}

–- A --- beginner
sources (1)src_myip_on (2)src_myip_off
ACLS (1)default (2)src_myip_on (3)src_myip_off
result MyIP Access = pass

--- B --- swapping acls
sources (1)src_myip_on (2)src_myip_off
ACLS (1)default (2)src_myip_off (3)src_myip_on
result MyIP Access = pass (!!)

-- C -- swapping sources
sources (1)src_myip_off (2)src_myip_on
ACLS (1)default (2)src_myip_on (3)src_myip_off
result MyIP Access = blocked (!!)

dhipo · Jun 25, 2007, 1:43 AM

you are right ….. the sources order change the result of policy .... i hate this.... only about lucky .... but my order of sources was right and when i changed policies stop to work.....

great work ..... SOURCES MUST BE ORDERED TO WORK ....

dvserg · Jun 25, 2007, 7:17 AM

In sources table no way to mooving table line up/down
I have idea add one checkbox field with 3 positions (–/move up/move down)

Any other idea?

Perry · Jun 25, 2007, 8:39 AM

In sources table no way to mooving table line up/down

Maybe you could get around it by first saving it to a temp file first, adding a number 1 2 3 and then add it to conf by number…

dvserg · Jun 25, 2007, 11:17 AM

For example this

dhipo · Jun 25, 2007, 1:27 PM

looks good ….

but correct english in some words ...

change
Sources order have very impotant importance
to
Sources order have very higy importance.

word "chose" the correct is "choose"

dhipo · Jun 25, 2007, 1:51 PM

new thing ….

on the Destinations tab i cannot add an redirect url all tries give me the following message.

The following input errors were detected:

* Redirect must contains valid url. Example: 'http://www.my.com', 'https://my.com', 'ftp://my.com'

i try put in the field redirect

http://www.mydom.com.br/
http://www.mydom.com.br/test.htm
403:http://www.mydom.com.br/
403:http://www.mydom.com.br/test.htm

all with errors

dvserg · Jun 25, 2007, 2:15 PM

Yes .. may be validator problem
Temporary - assign only '404'
User will view 404 error page

Perry · Jun 25, 2007, 2:17 PM

Source order is of high importance. Sources are evaluated on a first-match basis
Wrong order:
First source entry is the range 10.0.0.0/24 and second entry is 10.0.0.15 (or 10.0.0.15/32 )
Right order:
First source entry is the single ip 10.0.0.15 (or 10.0.0.15/32 ) then the overlaying range 10.0.0.0/24

My none native language suggestion :)

dvserg · Jun 25, 2007, 2:27 PM

I shall is thanked for good english text

dvserg · Jun 26, 2007, 5:43 PM

Uhhm
Ready for test
Need update from site files
'squidguard.inc'
'squidguard_configurator.inc'
'squidguard_src.xml'
OR reinstall

dhipo · Jun 27, 2007, 3:58 PM

not necessary squidgaurd.xml ????

dhipo · Jun 27, 2007, 4:37 PM

i did an test
if an source is deleted (eg … source # 0) to other sources become indexed is necessary open the source #1 and move it to #0

but moving orders is good .... and working ,..

dvserg · Jun 27, 2007, 5:20 PM

@dhipo:

not necessary squidgaurd.xml ????

I modified only this 3 files

i did an test
if an source is deleted (eg … source # 0) to other sources become indexed is necessary open the source #1 and move it to #0

or i stupid, or my translator.. what processed if deleted all sources??? Please looking what's happening with 'squidguard.conf' in this moment? Broken or no?

but moving orders is good …. and working ,..

Sources order in gui das is correspond order in squidguard.cfg

PS i test all bugs too, but i need more 'test statistic' for diagnose BUG
PS2 Thanks for you job :)

dhipo · Jun 27, 2007, 5:25 PM

ok … english is not my language too... but i ll try again ....

remove an source, example source number 0... the others sources are not modified....
to modify , you need open next source, move it to number 0 and save ...

yes ... the squidguard.conf is ok ....

dhipo · Jun 27, 2007, 5:30 PM

@dhipo:

remove an source, example source number 0… the others sources are not modified....
to modify , you need open next source, move it to number 0 and save ...

this only for cosmetic …. squidguard.conf is ok