1. Home
  2. pfSense Packages
  3. Squidguard HTTPS non-T

Squidguard HTTPS non-T

  • K

    From my knowledge I thought it was possible to use https filtering when you use a non-transparant proxy and put the proxy details in the browser of the user.

    This doesn't work for me. Websites blocked with http protocol are accessible with https.

    2.1-RELEASE
    Squid 2.7.9 pkg v.4.3.3
    Squidguard 1.4_4 pkg v.1.9.5

    Proxy interface LAN - Allow users on interface - Transparant proxy UNTICKED

    0
  • M

    you should also use a firewall rule to block direct acces to port 443 besides port 80

    0
  • K

    I did some basic testing:

    https gives an error: Errorcode: ERR_TUNNEL_CONNECTION_FAILED <– is this the normal behaviour?

    0
  • marcelloc

    with proxy set on clients ssl sites are blocked/filtered on on domain lists as squid can't analyse url after ssl handshake is done.

    with squid3-dev you can intercept ssl and filter https the same way you do with http.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy