SquidGurad service stop issue
-
facebook will be only block http not https unless you run explicit mode which then you need to configure WPAD.
-
facebook will be only block http not https unless you run explicit mode which then you need to configure WPAD.
You can block HTTPS in Transparent mode, but you need to install a pfSense server certificate on every client that will use the proxy, which is a massive pain in the ass.
-
Hi Kom,
As per your steps I am trying to access the scp but it is giving the error (screen shot attached).
Kindly suggest..
Thanks,
Sjain
-
Assuming WinSCP, you have the File Protocol set to SCP and not SFTP?
-
I have choose scp.(screen shot attached).
Thanks,
Sjain
-
Sorry, I forgot that the pfSense startup menu confuses WinSCP login.
Just install the File Manager package and do it that way with a web interface.
-
As per your steps I have installed the file Manager in pfsense and you have provide the link for the changing the block message https://forum.pfsense.org/index.php?topic=93097.0
but I have tried to find out the file sgerror.php and pfsense directory in /usr/local/www, i can't find out
(Screen Shot attached)
So please can you tell me the current location of pfsense directory and file sgerror.php in pfsense 2.1.5
Thanks,
Sjain
-
Hi KOM,
I am using the pfsense with squid & squidguard in my company to give the access internet in users mobiles.
It is not possible to install the pfSense server certificate in all users mobiles so please can you give other option to block the https websites.
Thanks,
Sjain -
You were in the right place, but you need to use your mouse wheel or the scroll button to go down the list past the folders to the files. It's in alphabetical order, with folders listed first and then files, sort of like how every computer in the world shows folders and files. This is basic computer stuff. If you don't know your way around a file system then I'm not sure how you think you're going to configure a routing firewall with proxy support.
If you want to avoid installing certs, use squid in explicit mode and then configure WPAD to allow your clients to auto-detect the proxy.
-
You can block HTTPS in Transparent mode, but you need to install a pfSense server certificate on every client that will use the proxy, which is a massive pain in the ass.
haha i love that "pain in the ass" so true ;D
Also @sjain WPAD will work but there's some androids that wont work. As chris4916 pointed out to me that you would need Drony to install on the androids, which may not work in your situation. Tell you truth if you don't mind just showing a blank error page on block sites use pfBlockerNG it gets the job done maybe not as neat but usually people enter www.facebook.com it comes up at HTTP (which squidGuard will show the nice blocked page) but if they Google search Facebook it comes up at HTTPS pfBlockerNG will not let it connect.
