[squid-users] Squid, TPROXY and SquidGuard

From: Mamadou Touré <e2ia.ci_at_gmail.com>
Date: Sun, 8 Aug 2010 21:21:58 +0000

Hi,
all i've implemented squid with Tproxy and SquidGuard for transparent
content filtering.
squid conf:
++++++++++++++++++++++++++++++++++++++++++++

http_port 3129 tproxy
redirect_program /usr/local/bin/squidGuard -c
/usr/local/squidGuard/squidGuard.conf -d
redirect_children 10

+++++++++++++++++++++++++++++++++++++++++++++++++

my squidGuard.conf
+++++++++++++++++++++++++++++++++++++++++++++++++++++

.....
dest  porn {
       domainlist           porn/domains
       urllist              porn/urls
       expressionlist       porn/expressions
       redirect             http://localhost/denied.bl
}

acl {
       winxp_1 {
               pass !porn any
       }
       default {
               pass any
       }
 }
......
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

HTTP traffic are redirect via:
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

iptables -t mangle -A PREROUTING -p tcp --dport 80 -j TPROXY
--tproxy-mark 0x1/0x1 --on-port 3129
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

My traffic passthrougth squid but the contents are not filtered
because the user can access porn site.
Also there access are logged in access.log
can someone help me?

regards.
Received on Sun Aug 08 2010 - 21:21:59 MDT

This archive was generated by hypermail 2.2.0 : Mon Aug 09 2010 - 12:00:02 MDT