Squid3 + Dansguardian Clarification / help



  • Is the point of SSL man in the middle intercepting on the new dev squid proxy solely for the purpose of enabling the caching of ssl https content or can the squid proxy then pass this unencrypted content to other packages eg Dansguardian so that the ssl content can be filtered? Or does the ssl mitm function of the Dansguardian package have to be invoked separately thereby performing 2 x man in the middle intercepting?

    Currently I have the squid package proxy doing ssl intercepting in transparent mode, I have installed Dansguardian, how do I now go about getting dansguardian to do ssl content filtering please?

    Do I have to set up two rules to forward both ports 80 and 443 to port 8080 of dansguardian and initiate the ssl portion of danguardian in addition to that of the separate squid package? I hope this makes sense!  :)
    Thank you.



  • @bilbo:

    Currently I have the squid package proxy doing ssl intercepting in transparent mode, I have installed Dansguardian, how do I now go about getting dansguardian to do ssl content filtering please?

    Hi there.

    I have the same question…

    Did you manage to do this? Any clues?

    Thanks...



  • In theory, Dansguardian is capable of doing what you suggest. There is an option in the group settings to enable it. From what I could find on the forums, this feature is not working on Dansguardian. Marcelloc would know for sure. It is working with squid3-dev, so you can do basic blocking and caching with that.


Log in to reply