Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Transparent Proxy: Squid allow Chrome to open gmail.com when it's blocked

    Scheduled Pinned Locked Moved pfSense Packages
    5 Posts 2 Posters 2.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      Dawie_Kabouter
      last edited by

      Hi

      I have a very strange issue, I have blocked Webmail category on SquidGuard and I know when operating in transparent mode the only way to block the HTTPS connection is to block it in Squid. I did this, however and  Chrome somehow find it appropriate to display the page.

      In IE this is the page I get:

      ERROR

      The requested URL could not be retrieved

      –------------------------------------------------------------------------------

      While trying to retrieve the URL: http://www.gmail.com/

      The following error was encountered:

      • Access Denied.

      Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect.

      Your cache administrator is admin@localhost.

      This is the desired result and this does happen in Firefox and other browsers except for Google Chrome.

      Anyone had the same problem?

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        If chrome is actually using the proxy, consult the proxy logs from the transaction to see just what server Chrome is hitting. It may be a special/different URL.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • D
          Dawie_Kabouter
          last edited by

          Hi

          The funny part is I am getting this in the logs:

          192.168.123.119 TCP_DENIED/403 1340 GET http://mail.google.com/ - NONE/- text/html
          192.168.123.114 TCP_DENIED/403 1336 GET http://www.gmail.com/ - NONE/- text/html

          But still it shows the page…

          Any other ideas?

          1 Reply Last reply Reply Quote 0
          • D
            Dawie_Kabouter
            last edited by

            No one…?

            1 Reply Last reply Reply Quote 0
            • D
              Dawie_Kabouter
              last edited by

              To those intressted, I managed to archive my goal by setting up an Firewall rule to REJECT the following Network range: 74.125.0.0/16

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.