Re: [squid-users] WebFilter by ip

From: Landy Landy <landysaccount_at_yahoo.com>
Date: Fri, 26 Mar 2010 15:09:19 -0700 (PDT)

> > > > I'm trying to do this web content filtering at a small > elementery school and is tending to be somewhat difficult to > implement since I'm already blocking some ip address from > accessing the Internet and allowing others. Now,  I > have no idea how I can filter only a hand full of the > allowed ip addresses. Don't know exactly how to do it since > there isn't any if statements and stuff like that to use for > the ip addresses I need filtering for. > > > > Please guide me to where I can get an idea of what to > do in my case. > > I appreciate yout time. > > > > > > > >        > > I'm not entirely sure I understand the question. You appear > to have asked the question in response to the answer above. > > What do you mean by "the allowed ip addresses"? Is this > local ip addresses that are permitted (or not) to browse or > remote addresses that are or are not allowed to be browsed > to? > > In any case squidGuard on top of the squid cache can do the > filtering you are looking for (regardless of the answer to > the above question - it will filter on both usages of ip > address in that context). > > There is a lot of information on both the squidGuard as > well as squid cache web sites regarding how to set this up > and of course if you have specific questions they can be > asked here. This question is rather lacking in details > though. What have you found difficult to implement? I have a small network at an elementery school where I have two labs: one would have access to the internet and one won't. I'm currently doing this. Now, I also have teachers and others that would be accessing the web as well. I would like to allow teachers and other full access to the internet and the allowed students (the other lab) would be restricted to certain pages that's where squidGuarg comes in. Since, I'm already doing: acl localnet src 172.16.0.0/16 acl proxy src 172.16.0.1 acl allowed src "/etc/msd/ipAllowed" acl CONNECT method CONNECT http_access allow proxy http_access allow localhost #---- Block some sites acl blockanalysis01 dstdomain .scorecardresearch.com .google-analytics.com acl blockads01 dstdomain .rad.msn.com ads1.msn.com ads2.msn.com ads3.msn.com ads4.msn.com acl blockads02 dstdomain .adserver.yahoo.com pagead2.googlesyndication.com ad.yieldmanager.com acl blockads03 dstdomain .doubleclick.net http_access deny blockanalysis01 http_access deny blockads01 http_access deny blockads02 http_access deny blockads03 http_access allow allowed http_access deny all .................................... I don't see how I can take an ip address from ipAllowed to do content filtering. This is where I'm stuck. Maybe create another file: ipFiltered and put the ip addresses that would be controlled? and then what? Thanks for replying.
Received on Fri Mar 26 2010 - 22:09:26 MDT

This archive was generated by hypermail 2.2.0 : Mon Mar 29 2010 - 12:00:06 MDT