Hi,
all i've implemented squid with Tproxy and SquidGuard for transparent content filtering.
squid conf:
Code:
http_port 3129 tproxy
redirect_program /usr/local/bin/squidGuard -c /usr/local/squidGuard/squidGuard.conf -d
redirect_children 10
my squidGuard.conf
Code:
.....
dest porn {
domainlist porn/domains
urllist porn/urls
expressionlist porn/expressions
redirect http://localhost/denied.bl
}
acl {
winxp_1 {
pass !porn any
}
default {
pass any
}
}
......
HTTP traffic are redirect via:
Code:
iptables -t mangle -A PREROUTING -p tcp --dport 80 -j TPROXY --tproxy-mark 0x1/0x1 --on-port 3129
My traffic passthrougth squid but the contents are not filtered because the user can access porn site.
can someone help me?
regards