Notes on installing pfSense behind a firewall…

Leave a comment

April 24, 2015 by aubreykloppers

ACL’s on Squid 2.7:

Create a file called /root/ip-list.txt.  Add your IP’s line-by-line and add the following to your squid “Custom Options”:

acl IP-LIST src “/root/ip-list.txt”;log_access deny IP-LIST

Check your configuration for errors:

squid -k parse

Testing squid:

squidclient -h {ip address of proxy} -p {port number} http://{address}

This will give you an entry in your squid log like this:

1429614270.526 5 {from address} TAG_NONE/500 3035 GET http://{address}/ - HIER_NONE/- text/html

Testing ACL’s on Squid3:

  • DISABLE “Enable loggin” option.
  • Set variables:

acl IP-LIST src “/root/ip-list.txt”
access_log /var/squid/log/access.log !IP-LIST

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: