In­stal­la­tion and con­fig­u­ra­tion of SquidGuard

OpenSource For You - - ADMIN -

Go back to the pack­age man­ager and in­stall SquidGuard. Suc­cess­ful in­stal­la­tion will add the SquidGuard Proxy Fil­ter menu item un­der Ser­vices. Fig­ure 6 de­tails the re­quired con­fig­u­ra­tion items.

For SquidGuard to fil­ter out the un­nec­es­sary web­sites, a black­list will have to be con­fig­ured and up­dated pe­ri­od­i­cally. This is pos­si­ble from Ser­vices – SquidGuard Proxy Fil­ter – Black­list op­tions. One of the most widely used black­list URL is http://www.shal­lal­ist.de/Down­loads/shal­lal­ist.tar.gz. Please read the terms and con­di­tions of us­ing the Shal­lal­ist web­site be­fore­hand.

Be­fore con­tin­u­ing fur­ther, please go through the steps de­tailed at the end of this ar­ti­cle to over­come the known is­sues as­so­ci­ated with Squid and SquidGuard.

Con­tinue to up­date the black­list from the Ser­vices – SquidGuard Proxy Fil­ter – Black­list menu by click­ing on the Down­load but­ton. Once this down­load is com­pleted, as a primary con­fig­u­ra­tion, go to the Ser­vices – SquidGuard Proxy Fil­ter – Com­mon ACL menu, se­lect the Ex­pand Tar­get Rules Lists by click­ing the ‘+’ but­ton, deny ac­cess for un­wanted tar­get cat­e­gories such as gam­bling, porn, etc. Then click on Save. See Fig­ure 7 for this con­fig­u­ra­tion ex­am­ple.

Once con­fig­ured, im­ple­ment this con­fig­u­ra­tion by click­ing the ‘Ap­ply’ but­ton from the Ser­vices – SquidGuard Proxy Fil­ter – Gen­eral menu.

Ver­ify that the fil­ter­ing is work­ing prop­erly by open­ing one of the blocked sites in the Web browser. The browser should give a Re­quest de­nied er­ror along with the rea­son and client IP ad­dress. This unau­tho­rised ac­cess at­tempt is also logged and can be viewed from SquidGuard Proxy Fil­ter – Logs. is­sue of SquidGuard not able to auto restart af­ter sys­tem re­boot are avail­able at: https://fo­rum.pfsense.org/in­dex. php?topic=94312.0

For the ready ref­er­ence of users, the steps from this dis­cus­sion are de­tailed below. 1. Lo­gin to your pfSense com­puter us­ing

SSH and mon­i­tor cache log: 2. In the proxy fil­ter SquidGuard/tar­get cat­e­gories, de­fine a dummy cus­tom tar­get cat­e­gory. Name: Dummy. De­scrip­tion: Dummy cus­tom tar­get cat­e­gory (Fix: Squid and SquidGuard are not set to auto start af­ter re­boot). The re­main­ing pa­ram­e­ters are blank. 3. In the proxy fil­ter SquidGuard/Com­mon Ac­cess Con­trol List, in Tar­get Rules, find your dummy tar­get cat­e­gory and set ac­cess to Deny to cre­ate the miss­ing black­list di­rec­tory. 4. Go to Gen­eral Set­tings and se­lect Ap­ply to ac­ti­vate the

con­fig­u­ra­tion up­date. 5. Your mon­i­tor­ing tail of cache.log will im­me­di­ately start to scroll, in­di­cat­ing suc­cess­ful im­ple­men­ta­tion of the work­around. It is ad­vis­able to do a con­fig­u­ra­tion backup (di­ag­nos­tics/ backup/re­store). 7. Do a sys­tem restart and val­i­date that Squid and

SquidGuard ser­vices now suc­cess­fully auto-start. 6.

Newspapers in English

Newspapers from India

© PressReader. All rights reserved.