[Resolvido] Ajuda no Dansguardian



  • Senhores,

    Bom dia!

    Estou com dificuldades para utilizar o Squid+Dansguardian.

    Seguinte, criei umas regras para redirecionar o saída de uma Vlan da 80 para 8080 no Port Forward do NAT, conforme informações abaixo:

    Interface: VLAN
    Protocol: TCP
    Source: VLAN subnet
    Destination: any
    Destination Port: HTTP to HTTP
    Redirect IP: <gateway da="" vlan="">Redirect Target Port: 8080

    Contudo, ao ativar o dansguardian e fazer o download da blacklist, o processo de update inicia e depois retorna a seguinte mensagem… "Dansguardian - could not determine blacklist extract dir, categories..."

    Essa mensagem fica aparecendo embora aparentemente as categorias de Banned Urls no ACCESS LIST apareceram como abortion, ads, adult... e assim vai.

    Minha dúvida é:

    • como tirar essa mensagem de erro: "Dansguardian - could not determine blacklist extract dir, categories..."?

    • a maneira que estou fazendo está correta, para ativar o squid + dansguardian para bloquear os sites indevidos.?

    • e se Existe algum tutorial para configuração do squid+dansguardian no pfSense?

    ...</gateway>



  • rafaeu,
    Bem vindo ao fórum!  :)

    Vou conferir o código de aplicação das blacklists, ele recebeu uma contribuição estes dias

    https://github.com/bsdperimeter/pfsense-packages/pull/327



  • Reinstalei o pacote aqui e a blacklist atualizou perfeitamente, tenta baixar o arquivo na mão, salvar em /usr/local/www e apontar no dansguardian a blacklist para 127.0.0.1/arquivo_blacklist.tgz.



  • Marcello,

    acessei ao STATUS>System Logs, e olha o resultado que está dando…

    não sei a melhor maneira de colar esses logs aqui, mas está aqui... ver se você consegue por favor entender e ver o erro que está causando... Hoje tentei novamente baixar o blacklist, (ontem não deu certo daquela forma localmente), ativei o dansguardian, incluir para banir as urls relacionadas a redes sociais.
    Esse foi o resultado dos logs...

    Novamente obrigado pela atenção...

    Nov 14 09:51:20	php: /pkg_edit.php: Blacklist udpate process started
    Nov 14 09:51:20	php: /pkg_edit.php: New alert found:
    Nov 14 09:51:21	php: /pkg_edit.php: Starting Dansguardian
    Nov 14 09:51:29	php: : New alert found:
    Nov 14 09:53:50	check_reload_status: Syncing firewall
    Nov 14 09:53:50	check_reload_status: Syncing firewall
    Nov 14 09:53:50	php: /pkg_edit.php: Blacklist udpate process started
    Nov 14 09:53:50	php: /pkg_edit.php: New alert found:
    Nov 14 09:53:50	php: /pkg_edit.php: Reloading Dansguardian
    Nov 14 09:53:51	php: : New alert found:
    Nov 14 09:53:52	dansguardian[12074]: Error reading file usr/local/etc/dansguardian/lists/blacklists/social_networks/urls: No such file or directory
    Nov 14 09:53:52	dansguardian[12074]: Error reading file /usr/local/etc/dansguardian/lists/blacklists/social_networks/urls: No such file or directory
    Nov 14 09:53:52	dansguardian[12074]: Error opening file: /usr/local/etc/dansguardian/lists/blacklists/social_networks/urls
    Nov 14 09:53:52	dansguardian[12074]: Error opening bannedurllist
    Nov 14 09:53:52	dansguardian[12074]: Error opening filter group config: /usr/local/etc/dansguardian/dansguardianf1.conf
    Nov 14 09:53:52	dansguardian[12074]: Error reading filter group conf file(s).
    Nov 14 09:53:52	dansguardian[12074]: Error re-parsing the dansguardian.conf file or other DansGuardian configuration files
    Nov 14 09:56:24	check_reload_status: Syncing firewall
    Nov 14 09:56:24	check_reload_status: Syncing firewall
    Nov 14 09:56:24	php: /pkg_edit.php: Blacklist udpate process started
    Nov 14 09:56:24	php: /pkg_edit.php: New alert found:
    Nov 14 09:56:25	php: /pkg_edit.php: Starting Dansguardian
    Nov 14 09:56:25	dansguardian[19984]: Error reading file /usr/local/etc/dansguardian/lists/blacklists/social_networks/urls: No such file or directory
    Nov 14 09:56:25	dansguardian[19984]: Error reading file /usr/local/etc/dansguardian/lists/blacklists/social_networks/urls: No such file or directory
    Nov 14 09:56:25	dansguardian[19984]: Error opening file: /usr/local/etc/dansguardian/lists/blacklists/social_networks/urls
    Nov 14 09:56:25	dansguardian[19984]: Error opening bannedurllist
    Nov 14 09:56:25	dansguardian[19984]: Error opening filter group config: /usr/local/etc/dansguardian/dansguardianf1.conf
    Nov 14 09:56:25	dansguardian[19984]: Error reading filter group conf file(s).
    Nov 14 09:56:25	dansguardian[19984]: Error parsing the dansguardian.conf file or other DansGuardian configuration files
    Nov 14 09:56:25	root: /usr/local/etc/rc.d/dansguardian.sh: WARNING: failed to start dansguardian
    Nov 14 09:56:25	php: /pkg_edit.php: The command '/usr/local/etc/rc.d/dansguardian.sh start' returned exit code '1', the output was 'kern.ipc.somaxconn: 16384 -> 16384 kern.maxfiles: 131072 -> 131072 kern.maxfilesperproc: 104856 -> 104856 kern.threads.max_threads_per_proc: 4096 -> 4096 Starting dansguardian. Error reading file /usr/local/etc/dansguardian/lists/blacklists/social_networks/urls: No such file or directory Error reading file /usr/local/etc/dansguardian/lists/blacklists/social_networks/urls: No such file or directory Error opening file: /usr/local/etc/dansguardian/lists/blacklists/social_networks/urls Error opening bannedurllist Error opening filter group config: /usr/local/etc/dansguardian/dansguardianf1.conf Error reading filter group conf file(s). Error parsing the dansguardian.conf file or other DansGuardian configuration files /usr/local/etc/rc.d/dansguardian.sh: WARNING: failed to start dansguardian'
    
    Nov 14 09:56:26	php: : New alert found:
    Nov 14 09:58:08	check_reload_status: Syncing firewall
    Nov 14 09:58:08	check_reload_status: Syncing firewall
    Nov 14 09:58:08	php: /pkg_edit.php: Blacklist udpate process started
    Nov 14 09:58:08	php: /pkg_edit.php: New alert found:
    Nov 14 09:58:08	php: /pkg_edit.php: Starting Dansguardian
    Nov 14 09:58:09	dansguardian[46488]: Error reading file /usr/local/etc/dansguardian/lists/blacklists/social_networks/domains: No such file or directory
    Nov 14 09:58:09	dansguardian[46488]: Error reading file /usr/local/etc/dansguardian/lists/blacklists/social_networks/domains: No such file or directory
    Nov 14 09:58:09	dansguardian[46488]: Error opening file: /usr/local/etc/dansguardian/lists/blacklists/social_networks/domains
    Nov 14 09:58:09	dansguardian[46488]: Error opening bannedsitelist
    Nov 14 09:58:09	dansguardian[46488]: Error opening filter group config: /usr/local/etc/dansguardian/dansguardianf1.conf
    Nov 14 09:58:09	dansguardian[46488]: Error reading filter group conf file(s).
    Nov 14 09:58:09	dansguardian[46488]: Error parsing the dansguardian.conf file or other DansGuardian configuration files
    Nov 14 09:58:09	root: /usr/local/etc/rc.d/dansguardian.sh: WARNING: failed to start dansguardian
    Nov 14 09:58:09	php: /pkg_edit.php: The command '/usr/local/etc/rc.d/dansguardian.sh start' returned exit code '1', the output was 'kern.ipc.somaxconn: 16384 -> 16384 kern.maxfiles: 131072 -> 131072 kern.maxfilesperproc: 104856 -> 104856 kern.threads.max_threads_per_proc: 4096 -> 4096 Starting dansguardian. Error reading file /usr/local/etc/dansguardian/lists/blacklists/social_networks/domains: No such file or directory Error reading file /usr/local/etc/dansguardian/lists/blacklists/social_networks/domains: No such file or directory Error opening file: /usr/local/etc/dansguardian/lists/blacklists/social_networks/domains Error opening bannedsitelist Error opening filter group config: /usr/local/etc/dansguardian/dansguardianf1.conf Error reading filter group conf file(s). Error parsing the dansguardian.conf file or other DansGuardian configuration files /usr/local/etc/rc.d/dansguardian.sh: WARNING: failed to start dansguardian'
    Nov 14 09:58:09	php: : New alert found:
    


  • Você tentou o procedimento que passei no post anterior?

    • baixar a blacklist na mão(usando o fetch por exemplo) e salvar o arquivo em /usr/local/www/blacklist.tgz

    • configurar no dansguardian a url da blacklist para http://127.0.0.1/blacklist.tgz (respeintando protocolo e porta que você configurou o pfsense)

    • executar a atualização da blacklist via console para ver o resultado

    Lembrando que este procedimento é para debug, conferi ontem a rotina de atualização da blacklist e o funcionamento está normal.

    att,
    Marcello Coutinho



  • Marcello,

    bom dia!!

    Finalmente pude tentar reconfigurar aqui o pfSense novamente…
    E dessa vez deu certo aqui.. com os informes que vc me falou e com o que vc falou para o elvio-che e para o sos micro, nos tópicos respectivos abertos com problema similar.. eu consegui resolver aqui com essa ajuda de vcs...

    Mas obrigado novamente a você, sosmicro e elvio-che!!

    Agora posso partir para as próximas etapas....


Locked