Security :: Squid Proxy Block Sites Or Domain
Apr 5, 2010
I have a problem with sites or domain blocking by squid proxy server in rehl 5. I have trying lots of time but i'm not succed.pls help me how to block sites or domain in rhel 5.
View 3 Replies
ADVERTISEMENT
Jul 22, 2010
I have setup a squid server on Rhel5.4. I would like to know how I can configure my squid server to block anon proxy sites.
View 3 Replies
View Related
Feb 6, 2010
Example I have 3 user list and 3 file with block site names
acl group1 src 192.168.0.2 192.168.0.3 192.168.0.4/24
acl group2 src 192.168.0.5 192.168.0.6 192.168.0.7/24
acl group3 src 192.168.0.8 192.168.0.9 192.168.0.10/24
[Code]...
I've moved your post here to its own thread. Please don't resurrect dead threads. --win32sux
View 1 Replies
View Related
Feb 17, 2010
I need to block some of my sites with SQUID Proxy. I added following lines to my SQUID configuration file but still the site remains unblocked.How to block it?
acl blocksites url_regex yahoo http_access deny blocksites
I have also tried saving some url & filter content in a file and edited configuration as follows,
acl blocksites url_regex "/etc/squid/squid-block.acl" http_access deny blocksites
The squid-block.acl file contents are, .cricinfo.com mp3
View 4 Replies
View Related
May 19, 2010
i just implemented ur instruction n got success but i have one problem that i want to provide only two or three web sites access to groups in squid.
View 1 Replies
View Related
Feb 17, 2010
I need to block some of my sites with SQUID Proxy. I added following lines to my SQUID configuration file but still the site remains unblocked.How to block it?acl blocksites url_regex yahoohttp_access deny blocksitesI have also tried saving some url & filter content in a file and edited configuration as follows,acl blocksites url_regex "/etc/squid/squid-block.acl"http_access deny blocksitesThe squid-block.acl file contents are.cricinfo.commp3
View 2 Replies
View Related
May 12, 2010
I have recently configured squid proxy server in rhel5 so now I am able to blocking some websites ok, but still I have one problem how can I block gtalk by using squid proxy, one more thing I blocked gmail so now client xp systems are not logging into gmail but still they using gtalk to chatting the things to others. So ultimately I need to block gtalk also by using squid proxy.
View 2 Replies
View Related
Jul 17, 2010
i have been looking up ways to block websites in linux but most all of the free ones only block the sites the software makers want to (or you can't block just the sites you enter without blocking the sites that it wants to)i need to know how to block only websites i enter with squid using webmin
View 3 Replies
View Related
Jun 17, 2011
I want block https sites if suppose block the http it will opening in https.
View 9 Replies
View Related
Feb 23, 2011
Is it possible to block a subdomain or a one lower level directory URL access from other hosts or network ? I have a site running on my server and i want to block the particular directory under the domain, with the exception of loopback access? I mean the directory must be accessible from loopback/localhost.
[url] on port 10016(expect loopback)
[url] on port 10016 (expect loopback)
Code:
View 1 Replies
View Related
Jan 17, 2010
how to disable the gmail chat? My means to say that when we login to gmail , after that the chat will open, I want to disable that chat. am using Redhat 9 and squid stable 2.5 version. I have tried the things mentioned below, but chat is still working.
[Code]...
View 1 Replies
View Related
Jul 1, 2010
here i would like to inform you that my company ask me to block facebook site at the work time it is: 08:00-12:30 and 14:00-17:30 in proxy server.i'm still confuse how to do!i need the details configuration in squid regarding how to block the sites
View 2 Replies
View Related
Jul 9, 2010
I want to block a domain name in sendmail server. I added the domain name and "REJECT"in /etc/mail/access file. What has to be done for the changes to take effect? when i run make command in /etc/mail dir i get following error : make: Nothing to be done for `all'.
View 1 Replies
View Related
Mar 24, 2011
i am using RHEL 5. i configured proxy server. now i want block one website.
View 2 Replies
View Related
Feb 9, 2010
is someone can guide the best open source tools to monitor as webbase,gui,shell prompt
View 1 Replies
View Related
Feb 9, 2011
In the past week or so I've noticed some weird network behaviour. I find accessing some sites such as Amazon, Paypal, and Bigstockphoto really slow. Sometimes the page will not load at all. Other sites are fine. The problem sites are not a problem for others on my LAN at home. When I try to open the problem sites, I can see in Firestarter blocked connections coming from 2.1(8/9).xxx.xxx on various ports such as 36007. This only happens for the problem sites. I attached a typical output from firestarter.
This happens with Firfeox or Chrome. Using Ubuntu 10.10
View 4 Replies
View Related
Jan 17, 2011
I would like to ask some help and tutorial for setting up and how to configure squid proxy server in my (Home PC Server). I am a newbie in Linux Centos. I already installed in my system the CentOS 5.5 . Now, I want to configure it as my internet server, all of my 4 system running in Windows including the laptop I want to connect through my CentOS pc with username authentication. I assign all IP address by static. see tthe attachement in my set up. [url] I just want to know what I need to change and add in my squid config file. And how can I configure properly my CentOS with 2 LAN card as internet server.
View 1 Replies
View Related
Dec 9, 2010
Currently my DHCP Server is working now what i want to have is auto detection of squid proxy in any browser but I still got an error in my dhcp server when I restart it.
My Config:
# DHCP configuration generated by Firestarter
ddns-update-style interim;
ignore client-updates;
[code]....
View 2 Replies
View Related
Jul 18, 2011
I need to block some websites and torrents on my LAN running on mostly WIndows XP pcs and a Windows 2008 domain controller. It's possible to block some sites using DNS in Windows Domain controller, but users have the rights to change DNS and bypass the rule. Editing HOSTS file doesn't workThen I tried using Avast antivirus Site Block feature, but that doesn't work on any browser except Mozilla. We have to use Epic and Mozilla Firefox.We can't use a dedicated hardware firewall due to budget constraints and the fact that we have multiple ADSL lines for internet. No single gateway.
View 7 Replies
View Related
Apr 8, 2010
How to add parental control like { block web site access, restricting login access for particular time, restrict web access} for particular user accounts in Linux.
View 5 Replies
View Related
Aug 9, 2010
Using 10.4, got the webmin installed and squid. Got my access control list setup.Within the acccess control list setup, I can not go to sites likemethodistmd.org or mollimd.org for whatever reason. But I can go to votekirkland as well as google. Why would webmin and/or squid only work with certain sites within the the defined access control list?
View 9 Replies
View Related
Jul 16, 2011
I just setup a linux machine that act as a gateway along with squid running in transparent mode. Now I have one asterisk server which is behind that gateway I mean on my local subnet which pass through my linux gateway. Voip server having 4mb up n 4 mb down limit. Clients having 512kbps and upload 2mb.
Linux gateway : controlling band width of each clients
Squid acl forNAT issue with voip sites
Now my question is regarding skype calling. Since skype uses port 80, does it mean that it passes its request via proxy or direct and for safe side I've changed skype incoming port to 443 which squid does not see it. How much and width does skype use for calling in that case. Some one told me that it using squid to pass its request which I don't agree.
View 2 Replies
View Related
Jul 15, 2011
how to install squid3.1.x to block https sites?
View 1 Replies
View Related
May 19, 2010
i have seven department in my office. i want to restricte web sites for all the departments but not same web sites for all the departments i.e. different sites for different departments.i have no idea about this issue.
View 1 Replies
View Related
Nov 3, 2009
I have FC-4 with Squid and Dansguardian. Internet Users in my organisation are configured to use proxy with 8080 in browser IE. There's no issue with Users as DG working perfect for them. We have Business Development Team, as they need to do most of the research over internet, their IP's are included into "Exception IP List" in Dansguardian. Obviously these people will be excepted from all banned sites, BD Team able to do chat, play games and do social networking and other stuff over the net, which results in more bandwidth consumption and breaking office policies.
I have tried to implement SQUID ACL's to block few sites like " meebo.com, orkut.com,facebook.com etc" but SQUID acl's not coming into picture. any one who successfully blocked chat, banned sites and social networking in DG with my case.
View 1 Replies
View Related
Jan 15, 2010
I have a question which it believe it is quite simple but I have no clue how to do it... I'm using Fedora 12 and I'm the only Linux machine in my office's LAN... I have Apache (httpd) setup and my co-workers can access the sites perfectly by using my IP address, for example [URL]... So here's the question, how do I setup a domain name so everyone in the LAN can access the sites by typing [URL]..
View 6 Replies
View Related
Jan 18, 2011
My Squid is working. But I do not know how to unblock a proxy for two users on my network. My configuration
Code:
acl work src 192.168.16.0/24
acl sites dstdomain "/etc/squid/sites.acl"
acl files urlpath_regex "/etc/squid/files.acl"
acl boss src 192.168.16.12
[Code]....
How to enable blocked sites and files for boss and it_user?
View 2 Replies
View Related
Jul 6, 2011
I'm having some issues settings up a transparent proxy server, which should allow only regular web browsing (port 80), any other port (including HTTPS (443)) has to be blocked, as well as any other port. Right now, I'm using Debian 6 and Squid3. The server only has one NIC. The topology is like this:
Clients <-> Proxy Server + DHCP Server <-> Internet
With this setup, the network does have internet access and the websites I whitelisted are the only ones accesible via browser, however port block is not working, every port is open, hence why trying to access blacklisted websites through HTTPS is possible. Seems to me Squid3 is doing it's job fine, however IPTABLES for some reason seems to be redirecting all the trafic to port 3128 (Squid3 port). I could be wrong, but I've been unable to do anything related to ports with squid3 (either whitelisting or blacklisting).
For Iptables I used:
Code:
iptables -A PREROUTING -t nat -i eth0 -p tcp -j REDIRECT --dport 80 --to-port 3128
iptables -A INPUT -i eth0 -m tcp -p tcp --dport 80 -j ACCEPT
iptables -A INPUT -i eth0 -m tcp -p tcp --dport 22 -j ACCEPT
iptables -A INPUT -i eth0 -m tcp -p tcp --dport 3128 -j ACCEPT
iptables -A INPUT -i eth0 -m tcp -p tcp --dport 443 -j DROP
Squid3 config:
Code:
acl manager proto cache_object
acl localhost src 127.0.0.1/32 ::1
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
acl Safe_ports port 80 # http
acl whitelist dstdomain "/etc/squid3/whitelist"
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny !whitelist
http_access allow localhost
http_access allow all
http_port 3128 intercept
hierarchy_stoplist cgi-bin
View 2 Replies
View Related
May 24, 2011
We are using Red Hat linux 4 .We blocked certain sites through squid for certain ip address.we want to unblock these sites in particular interval ,ie during noon time and after 4.00 pm.
Here we have given
In the sites.txt we have given the names the of those sites that should be blocked
The problem is to unblock sites in sites.txt, for particular intervals
View 3 Replies
View Related
Dec 24, 2008
in my office i have to block all messenger like yahoo messenger, windows live messenger, i have to block websites like www.yahoo.com, some more web sites. i need guidance through which i can accomplish this task through ip tables or through squid server. i can use squid but i had heard that squid blocks pop and smtp also. squid creates some problem in receiving and sending email. i am using red hat linux 4 box and installed squid having two ethernet card 1 is connected to adsl line and 2 is connected to switch. all clients will have proxy address of this linux box. guys need ur help ASAP.
View 2 Replies
View Related