2011/7/30 Vaughn L. Reid III <[email protected]> > > The Squid Package for PFSense looks like it will authenticate to a local > database, Radius, LDAP, or NT Domain. There are also some ACL capabilities > in the SquidGuard package. I'm not aware of any way to configure firewall > rules on PFSense that communicate with an authentication back-end. > Squid will usually authenticate as the user logged in to the computer, not as an arbitrary user. This works very well in a school or office environment where each user can be expected to log into Active Directory (and therefore their username will match in Squid). This does not work so well in a bring-your-own-equipment situation or where users share a computer/domain login and authenticate with the captive portal. We are currently working on a Squid extension that will allow for a web form to change the filtering level, but unfortunately I do not have a time frame for when it will be ready.
- Y
