I use squid to actually block based on IP address. Look at the docs for src and dst acl and you will find many ways to enhance the protection offered by SquidGuard.
Hope that helps,
David
On 10/5/06, Tomasz Holdowanski <[EMAIL PROTECTED]> wrote:
At 10:53 2006-10-02, you wrote:
>Hi,
>
>I'm not sure to understand what you exactly are trying to do : SquidGuard
>can't make DNS query to get the IP address of the website a user requests,
>and then verify that this address is in an IP list.
Ah. I thought it could do it.
>So if a user writes, say, http://www.sex.com in its browser, SquidGuard
>won't block it, even if the site address( 207.226.177.50) is in a well
>configured IP list of blocked sites.
>SquidGuard can only block this if the user writes http://207.226.177.50 in
>the browser. But this should not happen frequently. Anyway, if this is what
>you're trying to achieve, please post your config file.
It`s not that. I want SquidGuard (or squid, if it`s necessary) to
block ANY web address, blacklisted or not, if its IP is in the
IP_black_list. You see, there is almost infinite number of porn urls,
and some of them cleverly do not use any of usually blacklisted
words. However, the number of servers hosting XXX content is rather
limited, so are their IPs. Now I spend much of my time updating
/urls, /domains and /expressions blacklists, and I`m frustrated when
I see that the IPs those new porn urls refer to are still the same. I
just want to blacklist their IPs or IP ranges and go do more productive things.
Regards,
Tomasz.
P.S. It`s annoying that mailing list daemon doesn`t insert squidguard
list address in the reply-to field. I already posted a couple of
messages to private addresses instead of the list. Can anyone change
it, please?
mailto: [EMAIL PROTECTED]
The only thing worth waiting for
is a world-wide disaster.
