LinuxQuestions.org - Solution for blocking some https sites with centos

- Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)

- - Solution for blocking some https sites with centos (https://www.linuxquestions.org/questions/linux-networking-3/solution-for-blocking-some-https-sites-with-centos-942238/)

hamzar.pm

04-28-2012 04:27 AM

Solution for blocking some https sites with centos

Hi guys,
Iam using centos5.6, and squid 2.6.STABLE21, now squid is working fine for me, it blocks the given keywords with http only, the problem is clients are accessing https versions of blocked sites, my requirment is to block https also
for eg: https://www.somesite.com
but allow https://www.goodsite.com
and i dont want iptables becaus there might be a chance for changing the ips of the blocked sites.

looking forward for a grt support

em31amit

04-28-2012 09:48 PM

try this, may be this will helps, this should works in non transparent proxy.

acl CONNECT method CONNECT
acl bad_sites dstdomain "/etc/squid/bad_sites.txt"
http_access deny bad_sites
http_access deny bad_sites CONNECT

cat /etc/squid/bad_sites.txt
.domainname.com
.example.com
.somesite.com

All times are GMT -5. The time now is 07:47 PM.