Squid and SqidGuard... Need Help

0Trey0 · 05-12-2008, 03:58 PM

Ok, here's the history.

Tried to install BerkelyDB 3.2.9 but got an error on make so I went to SquidGuard 1.2.1 and installed BrekeleyDB 2.2.7. Everything installed fine and the blacklists files were created fine.

Here is my squid.conf...
______________________________________________________________
http_port 3128
visible_hostname squid.xxxxxx.net

cache_dir ufs /var/spool/squid 75000 16 256
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
access_log /var/log/squid/access.log
log_ip_on_direct on

mime_table /etc/squid/mime.conf

debug_options ALL,1

request_body_max_size 10 MB
negative_ttl 1 minute
positive_dns_ttl 3 hour
cache_mem 2 GB
maximum_object_size 50 MB

redirect_program /usr/local/bin/squidGuard -c /usr/local/squidGuard/squidGuard.conf

auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/squid_passwd
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 30 minute
auth_param basic casesensitive off
auth_param basic blankpassword on

acl all src 192.168.1.0/255.255.255.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl badsites dstdomain "/usr/local/etc/restricted-sites.squid"
acl ncsa_users proxy_auth REQUIRED

acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

http_access deny badsites
http_access allow ncsa_users
http_access allow all
http_access deny all

cache_effective_user squid
cache_effective_group squid
__________________________________________________________
Squid works great.

Here is my squidGuard.conf
__________________________________________________________
dbhome /usr/local/squidGuard/db
logdir /usr/local/squidGuard/log

dest porn {
domainlist porn/domains
urllist porn/urls
}

acl {
default {
pass !porn all
redirect http://www.marionschools.org
}
}
__________________________________________________________

Although squid is working great, squidGuard will NOT block sites.

I have made sure that the squid user has full access to the DB files.
Auth_param in the squid.conf.is working great.
No errors when I ran squidGuard -C all

The only error I can find is when I try to go to a block site.

It says
New Setting: dbhome /usr/local/squidGuard/db
New Setting: logdir /usr/local/squidGuard/log
init domianlist /usr/local/squidGuard/DB/porn/domains
loading dbfile /usr/local/squidGuard/db/porn/domains.db

domainlist empty, remove from memory
init urllist /usr/local/squidGuard/db/porn/urls
loading dbfile /usr/local/squidGuard/db/porn/urls.db
urllist empty, removed from memory
squidGuard 1.2.1 started
squidGuard ready for requests
squidGuard stopped

Thanks for any help!!!!!!!!!!!!!