Topic: sme as a proxy

[elgoth2003]

I'm looking for a way to block external access to my local proxy. I use the proxy for a dansguardian filter and I had been looking through the logs and found out that people can access my proxy externally and use it.  Any suggestions??

[mmccarn]

It sounds like you're running into http://bugs.contribs.org/show_bug.cgi?id=2658, which should be fixed if you install the updates released on September 30: http://forums.contribs.org/index.php?topic=38709.0

[kevinb]

I had the same issue.

I changed a setting in the danguardian.conf to have it only look at the internal IP.


Kevin

[cactus]

I had the same issue.

I changed a setting in the danguardian.conf to have it only look at the internal IP.

That is exactly what the fix in bug 2658 suggested by mmccarn in an earlier post does.

[elgoth2003]

I updated the server last night and I'm still able to access the proxy from my house. Anything else I should try??

[Franco]

I updated the server last night and I'm still able to access the proxy from my house. Anything else I should try??

Did you try what kevinb suggested?

[kevinb]

Edit the /etc/dansguardian/dansguardian.conf file and set the filterip to your machines local IP:

Code: [Select]

# the IP that DansGuardian listens on.  If left blank DansGuardian will
# listen on all IPs.  That would include all NICs, loopback, modem, etc.
# Normally you would have your firewall protecting this, but if you want
# you can limit it to a certain IP. To bind to multiple interfaces,
# specify each IP on an individual filterip line.
filterip =

(e.g. filterip=192.168.1.1)

[elgoth2003]

I'm still confused on what filterip will do. Do I specify the filterip of the server itself??

[mmccarn]

Set 'filterip' to the LAN IP of your SME - this will cause it to *stop* listening on both the LAN and WAN IPs as it does by default.