Hi, I just implemented Squid using CentOS 5 into a client machine to function as a Proxy/filter. Squid is working fine however, when I try to do filtering, the ACLs don't seem to work. Here's the snippet of the ACL:
# block bad sites acl blocked_sites dstdomain "/etc/squid/blocked_sites" http_access deny blocked_sites #block bad words esp. porn and hate jargon acl blocked_sites_exp dstdom_regexp -i "/etc/squid/blocked_sites_exp" http_access deny blocked_sites_exp Do I have to use "url_regexp -i" or is "dstdomain" and "dstdom_regexp" enough? I can't seem to see much difference. I have also installed squidguard however, CentOS 5's bundled squid doesn't seem to redirect using squidguard properly. CentOS 5's squid uses the "url_rewrite_program" directive instead of "redirect_program" directive of previous versions. url_rewrite_program /usr/bin/squidguard -c /etc/squid/squidguard.conf Despite the filter in squid, clients can still browse into blocked sites. I have used the ff. IPTABLES rule to forward port 80 traffic to the squid port: iptables -A PREROUTING -t nat -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128 Any thoughts why it's not working? -- "A dog that has no bite, barks loudest." Registered Linux User #400165 http://baudizm.blogsome.com http://phossil.ifastnet.com Subscribed to: LARTC, Open-ITLUG, PRUG, KLUG, sybase.public.ase.linux SHA256: 857dd62339c9fe27460b725747dfe25d5612933f7d879c35fb0cba2dadaf972f
_________________________________________________ Kagay-Anon Linux Users' Group (KLUG) Mailing List [email protected] (http://cdo.linux.org.ph) Searchable Archives: http://archives.free.net.ph
