Date: Fri, 6 Jul 2007 17:27:09 +0200 From: Zbigniew Szalbot <zbigniew@szalbot.homedns.org> To: Denis R. <darom@kern.ca.us> Cc: freebsd-questions@freebsd.org Subject: re: parental control with squid and dansguardian Message-ID: <2edfd3b9ce6f94eaf624f1f3f5486eca@szalbot.homedns.org> In-Reply-To: <57122.206.169.45.183.1183733592.squirrel@sm.kern.ca.us> References: <57122.206.169.45.183.1183733592.squirrel@sm.kern.ca.us>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello, >>>Now, if someone just changes the port in their browser to 3128 (squid > proxy port), then all content filtering will be bypassed. > > I have the same setup at home for my kids. > > Check the /etc/ipnat.conf file to redirect all web traffic to your > FreeBSD_gateway_IP_address:8080 (assuming your FreeBSD box acts as a > firewall/squid/gateway). Now, I am not sure one thing. ipnat.conf is an ipfilter conf file. I use pf. I was wondering - maybe I should use squid setup defining an acl that would banned connection to port 3128 in squid? I am not sure yet how to do it (all of this is totally new to me) but I guess it is probably quite simple. Then I should probably set squid in the transparent mode which would enable me to point browsers to auto-discover proxy settings? Again, I am not sure my thinking is correct. Thanks! -- Zbigniew Szalbot
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2edfd3b9ce6f94eaf624f1f3f5486eca>