Re: What am I doing wrong

Greg Trigg Wed, 07 Jul 2004 20:00:54 -0700

I think this helped get me going.

I forgot the "ip" in front of my ip addresses! Now, I think I have a working conf file.

The command squidGuard -d helped me to find the line that was giving me the problem.

It looks like it's blocking the addresses in the db folder.

You guys have been a big help in pointing me in the right direction.

Greg

[EMAIL PROTECTED] squid]# squidGuard -d 2004-07-07 21:29:41 [9007] init iplist /usr/share/squidGuard-1.2.0/db/privilegedsource/ips 2004-07-07 21:29:41 [9007] sourceblock privilegedsource missing active content, set inactive 2004-07-07 21:29:41 [9007] init iplist /usr/share/squidGuard-1.2.0/db/bannedsource/ips 2004-07-07 21:29:41 [9007] sourceblock bannedsource missing active content, set inactive 2004-07-07 21:29:41 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/porn/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/porn/domains.db 2004-07-07 21:29:42 [9007] init urllist /usr/share/squidGuard-1.2.0/db/porn/urls 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/porn/urls.db 2004-07-07 21:29:42 [9007] init expressionlist /usr/share/squidGuard-1.2.0/db/porn/expressions 2004-07-07 21:29:42 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/adult/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/adult/domains.db 2004-07-07 21:29:42 [9007] init urllist /usr/share/squidGuard-1.2.0/db/adult/urls 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/adult/urls.db 2004-07-07 21:29:42 [9007] init expressionlist /usr/share/squidGuard-1.2.0/db/adult/expressions 2004-07-07 21:29:42 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/audio-video/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/audio-video/domains.db 2004-07-07 21:29:42 [9007] init urllist /usr/share/squidGuard-1.2.0/db/audio-video/urls 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/audio-video/urls.db 2004-07-07 21:29:42 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/forums/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/forums/domains.db 2004-07-07 21:29:42 [9007] init urllist /usr/share/squidGuard-1.2.0/db/forums/urls 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/forums/urls.db 2004-07-07 21:29:42 [9007] init expressionlist /usr/share/squidGuard-1.2.0/db/forums/expressions 2004-07-07 21:29:42 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/hacking/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/hacking/domains.db 2004-07-07 21:29:42 [9007] init urllist /usr/share/squidGuard-1.2.0/db/hacking/urls 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/hacking/urls.db 2004-07-07 21:29:42 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/redirector/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/redirector/domains.db 2004-07-07 21:29:42 [9007] init urllist /usr/share/squidGuard-1.2.0/db/redirector/urls 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/redirector/urls.db 2004-07-07 21:29:42 [9007] init expressionlist /usr/share/squidGuard-1.2.0/db/redirector/expressions 2004-07-07 21:29:42 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/warez/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/warez/domains.db 2004-07-07 21:29:42 [9007] init urllist /usr/share/squidGuard-1.2.0/db/warez/urls 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/warez/urls.db 2004-07-07 21:29:42 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/ads/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/ads/domains.db 2004-07-07 21:29:42 [9007] init urllist /usr/share/squidGuard-1.2.0/db/ads/urls 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/ads/urls.db 2004-07-07 21:29:42 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/aggressive/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/aggressive/domains.db 2004-07-07 21:29:42 [9007] init urllist /usr/share/squidGuard-1.2.0/db/aggressive/urls 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/aggressive/urls.db 2004-07-07 21:29:42 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/drugs/domains 2004-07-07 21:29:42 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/drugs/domains.db 2004-07-07 21:29:43 [9007] init urllist /usr/share/squidGuard-1.2.0/db/drugs/urls 2004-07-07 21:29:43 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/drugs/urls.db 2004-07-07 21:29:43 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/gambling/domains 2004-07-07 21:29:43 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/gambling/domains.db 2004-07-07 21:29:43 [9007] init urllist /usr/share/squidGuard-1.2.0/db/gambling/urls 2004-07-07 21:29:43 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/gambling/urls.db 2004-07-07 21:29:43 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/publicite/domains 2004-07-07 21:29:43 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/publicite/domains.db 2004-07-07 21:29:43 [9007] init urllist /usr/share/squidGuard-1.2.0/db/publicite/urls 2004-07-07 21:29:43 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/publicite/urls.db 2004-07-07 21:29:43 [9007] init expressionlist /usr/share/squidGuard-1.2.0/db/publicite/expressions 2004-07-07 21:29:43 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/violence/domains 2004-07-07 21:29:43 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/violence/domains.db 2004-07-07 21:29:43 [9007] init urllist /usr/share/squidGuard-1.2.0/db/violence/urls 2004-07-07 21:29:43 [9007] loading dbfile /usr/share/squidGuard-1.2.0/db/violence/urls.db 2004-07-07 21:29:43 [9007] init expressionlist /usr/share/squidGuard-1.2.0/db/violence/expressions 2004-07-07 21:29:43 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/banneddestination/domains 2004-07-07 21:29:43 [9007] domainlist empty, removed from memory 2004-07-07 21:29:43 [9007] init urllist /usr/share/squidGuard-1.2.0/db/banneddestination/urls 2004-07-07 21:29:43 [9007] urllist empty, removed from memory 2004-07-07 21:29:43 [9007] init expressionlist /usr/share/squidGuard-1.2.0/db/banneddestination/expressions 2004-07-07 21:29:43 [9007] init domainlist /usr/share/squidGuard-1.2.0/db/advertising/domains 2004-07-07 21:29:43 [9007] domainlist empty, removed from memory 2004-07-07 21:29:43 [9007] init urllist /usr/share/squidGuard-1.2.0/db/advertising/urls 2004-07-07 21:29:43 [9007] urllist empty, removed from memory 2004-07-07 21:29:43 [9007] squidGuard 1.2.0 started (1089253781.959) 2004-07-07 21:29:43 [9007] squidGuard ready for requests (1089253783.254)


Roberto Meyer wrote:

Greg Trigg escribi�/wrote/a �crit:
Well, on the first part, both paths are correct. My log files are empty, though. I want to use the files at dbhome to block IP's. All I
�?... are you sure squidGuard is running? When I do 'ps ax' in my
Debian GNU/Linux I see many processes like this one:
---
3174 ?        S      0:03 (squidGuard) -c /etc/squid/squidGuard.conf
---
I suppose you have this kind of jobs running... If not, you
forgot enabling the 'redirect_program' option in squid.conf file.
want to use this for is to block IP's. Once I figure that out, I'll move onto blocking certain IP's for users and many more for a user called Torrent. Most of the information in this conf file are from the example that came with the standard Mandrake 10.0 install discs.

I just looked at all of my lists for my src's and they are all empty. So, if I need to use any of these, I guess I better do it the way you do. It looks like my conf file isn't written in a way to do what I'm trying to do.

I commented out the acl's except for lansource and entered the ip of my ethernet card. The command to use the conf file didn't lock up the terminal this time. It still isn't blocking anything, though.
[snip]
Well... maybe you should backup your squidGuard.conf and start with a little and clean config.

I suppose you're trying to filter a LAN. At this point just forget about time and user restrictions. Simply start a file adapting the following config:
--- squidGuard.conf start ---
logdir /var/log/squid
dbhome /var/lib/squidguard/db
src filtered {
   ip  192.168.213.20/32        # put your IP here
}
src lan {
   ip  192.168.213.0/24
}
dest pornsites {
    domainlist porn/domains
    urllist    porn/urls
}
dest hacksites {
    domainlist hacking/domains
    domainlist hacking/urls
}
acl {
    lan {
        pass all
    }
    filtered {
       pass !pornsites !hacksites all
        redirect http://www.disney.com/
    }
    default {
        pass none
        redirect http://www.disney.com/
    }
}
--- squidGuard.conf end ---
Test it with a couple of domains picked from the 'domains' files.
BTW, remember domains and url database files must me readable by
the user who's running the squidGuard process (often proxy).
I suppose you must see something at squidGuard.log. I used to see
"can't read db files" because domains and url files where owned
by root and only readable by him. When this happens squidGuard
doesn't work.
HTH, good luck!
-
Roberto

Re: What am I doing wrong

Reply via email to