On Tue, 18 Dec 2001, Craig Falconer wrote:
> src lansource within workhours {
> #iplist lansource/lan
> ip 10.0.0.26
> }
>
> Nope - src definitions are not supposed to involve time restrictions.
Ok. I removed it.
> dest ads {
> domainlist ads/domains
> urllist ads/urls
> redirect http://www.yahoo.com
> }
>
> I suggest you redirect advertisements to
> redirect http://local.web.server/blank.gif
>
> where blank.gif is a 1x1 transparent image
>
I found the blank.png that comes with apache. So I made all redirects
point to that file.
> # ACLs
> acl {
> lansource {
> pass !adult !audio-video !forums !hacking !redirector !warez
> !ads !aggressive !drugs !gambling !publicite !violence !banneddestination
> !advertising all
> redirect
> http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclas
> s=%t&url=%u
> }
>
>
> default {
> pass none
> redirect
> http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclas
> s=%t&url=%u
>
> }
> }
>
> Remember 127.0.0.1 is the local address of the client, not the server. I
> suggest you use the IP of your linux box there.
I changed all references of localhost or 127.0.0.1 to the name of the
linux box.
> You should use time restrictions inside the ACLs, like this
>
> acl {
> lansource within workhours {
> pass !adult !audio-video !forums !hacking !redirector !warez
> !ads !aggressive !drugs !gambling !publicite !violence !banneddestination
> !advertising all
> redirect
> http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclas
> s=%t&url=%u
> } else {
> pass all
> }
Thanks. This was not really documented too well in the configuration
instructions.
> Also check the file /var/log/squidGuard/squidGuard.log and see whats going
> on there. If it says "emergency pass-all mode" then theres a problem with
> your db files.
>
No such error. I made the changes you recommended and restarted squid. The
only problem I have now is that the authorized time range does not match
the time structure called workhours. For example, workhours for Monday is
09:00-12:00 13:30-24:00. The error page I am seeing has Monday as
09:30-12:00 13:00-19:00. Why is squidGuard config not using the new times?
I appreciate your help. Thanks.
Stephen
