SquidGuard is not blocking anything

vivekthemind · 11-11-2005, 05:30 AM

Hi all
i was using squid with squidGuard from three months
it was working fine but after my linux machine has resatard it is
not blocking anything . i haven't changed anything in my squid but
still is not working .....
i m puting my squid.conf
plz help me out

http_port 8081
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 64 MB
maximum_object_size 64 MB
maximum_object_size_in_memory 16 KB
memory_replacement_policy heap LFUDA
cache_dir ufs /var/spool/squid 1024 64 512
cache_log none
cache_store_log none
redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
acl snip src 192.99.10.0/24
http_access allow snip
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all
coredump_dir /var/spool/squid

Pcghost · 12-05-2005, 02:15 PM

Post your squidguard.conf file. I know when I break a loop and such in the squidguard.conf it will pass all traffic.

vivekthemind · 12-05-2005, 10:45 PM

Hi here i m sending my squidGuard.conf let me know if u can help me out..

#----------------------------------------------------------------
# DO NOT MODIFY THIS FILE AS IT IS MODIFIED BY THE TEMPLATE
#----------------------------------------------------------------
# SquidGuard CONFIGURATION FILE
#----------------------------------------------------------------

# CONFIGURATION DIRECTORIES
dbhome /usr/share/squidGuard-1.2.0/db
logdir /var/log/squidGuard

# TIME RULES:
# abbrev for weekdays:
# s = sun, m = mon, t =tue, w = wed, h = thu, f = fri, a = sat
#time_leisure {
#weekly * 09:00-13:00
#weekly * 14:00-19:00
#}

# SOURCE ADDRESSES:
src privilegedsource {
iplist privilegedsource/ips
}

src bannedsource {
iplist bannedsource/ips
}

src lansource {
iplist lansource/lan
}

# DESTINATION CLASSES:
dest porn {
domainlist porn/domains
urllist porn/urls
expressionlist porn/expressions
redirect http://google.com
log /var/log/squidGuard/porn.log
}

dest adult {
domainlist adult/domains
urllist adult/urls
expressionlist adult/expressions
}

dest audio-video {
domainlist audio-video/domains
urllist audio-video/urls
}

dest forums {
domainlist forums/domains
urllist forums/urls
expressionlist forums/expressions
}

dest hacking {
domainlist hacking/domains
urllist hacking/urls
}

dest redirector {
domainlist redirector/domains
urllist redirector/urls
expressionlist redirector/expressions
}

dest warez {
domainlist warez/domains
urllist warez/urls
}

dest ads {
domainlist ads/domains
urllist ads/urls
log /var/log/squidGuard/ads.log
}

dest aggressive {
domainlist aggressive/domains
urllist aggressive/urls
}

dest drugs {
domainlist drugs/domains
urllist drugs/urls
}

dest gambling {
domainlist gambling/domains
urllist gambling/urls
}

dest publicite {
domainlist publicite/domains
urllist publicite/urls
expressionlist publicite/expressions
}

dest violence {
domainlist violence/domains
urllist violence/urls
expressionlist violence/expressions
}

dest banneddestination {
domainlist banneddestination/domains
urllist banneddestination/urls
expressionlist banneddestination/expressions
}

dest advertising {
domainlist advertising/domains
urllist advertising/urls
redirect http://127.0.0.1:8444/nulbanner.png
log /var/log/squidGuard/advertising.log

}

# ACLs
acl {
privilegedsource {
pass !porn all
redirect http://google.com
}
bannedsource {
pass !porn !advertising !ads !audio-video !forums !hacking !redirector !warez !public !jobs all
redirect http://google.com

}

lansource {
pass !porn !adult !audio-video !forums !hacking !redirector !warez !ads !aggressive !drugs !gambling !publicite !violence !banneddestination !advertising all
redirect http://127.0.0.1:8444/cgi-bin/squidG...lass=%t&url=%u
}

default {
pass none
redirect http://127.0.0.1:8444/cgi-bin/squidG...lass=%t&url=%u

}
}