RE: Hi,

Wed, 03 Apr 2002 21:32:50 -0800 

> I am trying to block porn to all users
> except one group. The category porn is
> filtering fine under default, however I
> cannot get the "techs" group to by pass
> SquidGuard.

And I know how tough it is to get any work out of the techs if you
take their porn away!

> My machine is 172.16.1.55 and it sill gets
> blocked and interestingly enough, all
> machines on the cgi page are identified as
> 172.16.0.0

Or it could be displaying 172.16.0.0 all the time and ignoring the
true ip?

Let's do a little research. I want you to add this line:
logfile /usr/local/squidGuard/log/porn.log
to the porn group section, like this:

dest porn {
        domainlist      porn/domains
        urllist porn/urls
        logfile /usr/local/squidGuard/log/porn.log
}

>From a command line enter:
touch /usr/local/squidGuard/log/porn.log
Then go change the ownership and permissions on porn.log to match
squidGuard.log.

While you're making changes in squidGuard.conf, you might want to
check to see if "any" is interchangeable with "all". Or you could
save time and just change the "any"s to "all". (pass all & pass
!porn all)

After making the changes, do a squid -k reconfigure. Now each time a
machine is redirected because of a hit in the porn database, it will
be logged in that porn.log, including the ip for that box.

Find out what that tells you and see if it helps the cause...

Rick


-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Allan de
Borde
Sent: Wednesday, April 03, 2002 8:40 AM
To: [EMAIL PROTECTED]
Subject: Hi,


Hi,

I am trying to block porn to all users except one group. The
category porn is filtering fine under default, however I cannot get
the "techs" group to by pass SquidGuard. My machine is 172.16.1.55
and it sill gets blocked and interestingly enough, all machines on
the cgi page are identified as 172.16.0.0 so I think this is why my
source group is not working. Here is my squidGuard.conf

logdir /usr/local/SquidGuard/log
dbhome /usr/local/squidGuard/db

src techs {
        ip              172.16.1.55
}

dest porn {
        domainlist porn/domains
        urllist porn/urls
}

acl     {
        techs {
                pass any
        }

        default {
                pass !porn any
                redirect
http://172.16.0.1/cgi-bin/squid/squidtester.cgi?clientaddr=%a&client
name=%n&clientuser=%i&clientgroup=%s&url=%u
                }
        }

Any help would be appreciated,

Thanks

Reply via email to