How to block UltraSurf with Squid?

shahsaifi · 04-01-2009, 02:09 AM

Its very nice to know all above stuff and I've implemented with your help, now I'm facing a problem which is ULTRASURF, there is a tool available on windows platform which connects to squid proxy on port 9666 and passes data in encrypted mode and my squid box is not able to block it.
Please help me out...

Thanks
Saif

win32sux · 04-01-2009, 02:19 AM

shahsaifi, please do not resurrect dead threads. I've moved your post into a thread of its own. That said, if you know this is using port 9666 then all you'd need to do is make an ACL for that port and then deny access to matching requests. Example:

Code:

acl UltraSurf port 9666
http_access deny UltraSurf

shahsaifi · 04-02-2009, 12:27 AM

http://www.ultrareach.com/

I've tried to block it with iptables using its port and squid acl also but not able to control.

win32sux · 04-02-2009, 05:53 AM

Quote:

Originally Posted by shahsaifi

http://www.ultrareach.com/

I've tried to block it with iptables using its port and squid acl also but not able to control.

Block what? That website?

Code:

acl UltraReach dstdomain ultrareach.com
http_access deny UltraReach

shahsaifi · 04-03-2009, 01:07 AM

Hi win32sux,

Thanks for reply but this is not working, please follow the link http://www.ultrareach.com/usercenter_en.htm, I hope you can u'stand the issue.

win32sux · 04-03-2009, 08:38 AM

Quote:

Originally Posted by shahsaifi

Thanks for reply but this is not working

Saying "it's not working" doesn't help us help you. You should instead post the log snippets which can show us what is getting through. That way we can tell you what changes to make to your Squid configuration.

tnsachinraj · 01-17-2012, 10:50 PM

Hi

Blocking ultrasufr effectively using squid is to block IP based browsing in it.By writing ACL we can achieve it