Peter Fraser wrote:
Yes it does, the is the end of the log below.
2005-11-22 19:52:45 [66108] init domainlist
/var/db/squidGuard/warez/domains
2005-11-22 19:52:45 [66108] loading dbfile
/var/db/squidGuard/warez/domains.db
2005-11-22 19:52:45 [66108] init urllist /var/db/squidGuard/warez/urls
2005-11-22 19:52:45 [66108] loading dbfile
/var/db/squidGuard/warez/urls.db
2005-11-22 19:52:45 [66108] squidGuard 1.2.0 started (1132707165.366)
2005-11-22 19:52:45 [66108] recalculating alarm in 14835 seconds
2005-11-22 19:52:45 [66108] squidGuard ready for requests
(1132707165.382)
Good
Yes I checked the all the logs and I don't see any errors at all.
The port redirect is still there. I don't use a transparent proxy. It's
a group policy pushed to the clients so they have the proxy IP address
and port in Internet options in control panel of winXP. The port
redirect is a firewall rule in IPFW on the BSD box. They can still
access the internet but no blocking. Squid is also still spawning
squidGuard. Thank you for the script Mike. I will use it right now to
check.
This is the result when I ran ./testurl.sh www.google.com
Hmm, you didn't supply an address. Using 10.33.1.1 to put the test
in the most restrictive set of rules (elementary schools).
Testing now...
Here is your output (if any).
I should have mentioned this before. The 'if any' is printed above
because if squidGuard lets the request pass unmodified there will be no
output. If there is output squidGuard is intercepting the request (which
also incidentally proves it is working).
http://admin.foo.bar.no/cgi/blocked?clientaddr=10.33.1.1+clientname=+cli
entident=+srcclass=default+targetclass=none+url=http://www.google.com
10.33.1.1/- - GET
In this case, squidGuard is working and has intercepted the request and
rewritten it to 'http://admin.foo.bar.no/cgi/blocked?yadayada'. I can't
tell what that url is supposed to do with the request as I don't know
what is there but squidGuard is definitely working.
I'd look closer at the ACL's. I've never worked with time based settings
before so I don't know much about them. The system time on the server
hasn't changed adversely has it? Perhaps it was only a snippet of your
complete file but I see that there are catagories listed (see the
example in your original post) on the pass line in your time related ACL
that has no corresponding dest entry above. I'd make sure everything
lines up in that regard if it doesn't.
Not sure what else to suggest. squidGuard is definitely processing from
the command line. Perhaps you need to look at the squid logs and make
sure your client requests are actually getting to the proxy. Squid logs
every request it sees in access.log by default and it has to get to
squid before squidGuard will ever see it. Maybe the client machine you
are using isn't actually sending the request to the proxy?
Don't know what else to suggest at the moment...
If there is nothing but blank lines after the 'Here is your output...'
string then the url passed. Otherwise, you should see the modified url
that would have been returned to the users browser instead.
-----Original Message-----
From: Mike Rambo [mailto:[EMAIL PROTECTED]
Sent: Wednesday, November 23, 2005 11:03 AM
To: Peter Fraser
Cc: SquidGuard List
Subject: Re: Squidguard stopped working
Peter Fraser wrote:
I installed squidguard on freebsd and everything worked great. The
database files and the log file are owned by squid and the user squid
can write to the files. The permissions are below.
<snip>
}
}
Everything worked just perfectly until I had occasion to restart the
machine and then everything just stopped. It no longer blocks. I am so
stumped, I just can't understand why. I don't see anything changing.
How can I debug this further? It is still logging to the log file and
there are no errors logged.
Help please.
Do you see a 'ready for requests' message at the bottom of the SG log?
Have you checked your squid and system logs for clues. If you are
running a transparent proxy did you lose the port redirect to squid when
you rebooted? Have you tried checking SG from the command line?
I'll attach a little shell script I use for the latter (assuming the
list software will let it through).
--
Mike Rambo
[EMAIL PROTECTED]
"There are four boxes to be used in defense of liberty:
soap, ballot, jury, and ammo. Please use in that order."
--Ed Howdershelt
