Topic: [ANNOUNCE] new contrib for web filtering

[Daniel B.]

You cannot filter https URL, because it's encrypted, squid doesn't see the full URL. But you can deny complete domain name. Just add minecraft.net to the blacklist, and manually configure your client to use the proxy (IP of your SME Servver, port 3128). When a proxy is manually configured for HTTPS, the browser asks squid to tunnel the traffic, so, even if squid cannot see the full URL, it can see the domain name, and deny it if it's blacklisted.

Regards, Daniel

[hawk]

Hi Daniel

I have loaded this contrib on several servers and it works like a charm. Today i am loading on another and it just will not work. It doesn't block any thing. Even if i put the domain in the blacklist.

Simple example.

all the categories are ticked and i have sex.com in the blacklist, all the ip and gateway settings are correct, and still i can view the site. all the computers on the network can view the site and other sites that should be blocked.

SME server v8, fully up to date, reboot, reconfigured done twice

Do you have any idea as to what might be the problem.

thanks
John

[Daniel B.]

You should take a look at the log file /var/log/squidGuard/squidGuard.log

[chris burnat]

[snip]
Do you have any idea as to what might be the problem.

thanks
John

Please open a ticket at Bugzilla providing information about your server and including logs (attach them) as requested,  i.e. /var/log/squidGuard/squidGuard.log
Thanks.

[hawk]

hi

thanks for the reply. I looked through the logs and found line errors.

i did a total uninstall rebooted and installed again.

now all is working sweet
thanks
great contrib.

[calisun]

Thank you, this is  a great contrib and it works great.

I do have one issue, when I enable the AV Filtering, I am unable to download any apps from Apple store on my iPhone. When I disable the AV Filtering, the app download works fine.

Is there a way to change AV Filtering setting so I can have AV Filter enabled and I can download apps from the Apple Store.

[Daniel B.]

Yep, this is because when AV filtering is enabled, the AV engine rewirte the UserAgent string, and the app store will deny the connection. To fix it, you can add *.phobos.apple.com in the whitelist. You'll have the same problem wioth the android playstore, and you can fix it adding:

clients.google.com
android.clients.google.com

In the whitelist too.

Regards, Daniel

[p-jones]

I do have one issue, when I enable the AV Filtering, I am unable to download any apps from Apple store on my iPhone. When I disable the AV Filtering, the app download works fine.

Interesting Comment. I have same issue downloading for my android phone from Google PlayStore.

EDIT: Ok this has been answered . We both posted together !

[calisun]

Thank you for a super quick reply.

I did read some suggestions on other web pages to whitelist:
itunes.apple.com
ax.itunes.apple.com
albert.apple.com
gs.apple.com

But no luck.

I will also add your suggestion
*.phobos.apple.com

And see if it will fix the issue.

Thanks again.

[hawk]

Hi Daniel

Not sure if this is related, but i am getting new errors appearing on a few of my server.

1.Backup terminated: pre-backup failed - status: 256

when i check the logs i find the following.
May 19 22:27:03 blomlinuxserver esmith::event[21297]: Running event handler: /etc/e-smith/events/pre-backup/S20mysql-dump-tables
May 19 22:27:09 blomlinuxserver esmith::event[21297]: mysqldump: Got error: 144: Table './squid_log/access_log_04_2013' is marked as crashed and last (automatic?) repair failed when using LOCK TABLES 
May 19 22:27:09 blomlinuxserver esmith::event[21297]: S20mysql-dump-tables=action|Event|pre-backup|Action|S20mysql-dump-tables|Start|1368995223 986295|End|1368995229 609257|Elapsed|5.622962|Status|256
M

then on another server a simular error

2013-05-15 04:03:34 [25109] init domainlist /var/squidGuard/blacklists/shopping/domains
2013-05-15 04:03:34 [25109] loading dbfile /var/squidGuard/blacklists/shopping/domains.db
2013-05-15 04:03:34 [25109] init urllist /var/squidGuard/blacklists/shopping/urls
2013-05-15 04:03:34 [25109] loading dbfile /var/squidGuard/blacklists/shopping/urls.db
2013-05-15 04:03:34 [25109] /usr/bin/squidGuard: can't write to logfile /var/log/squidGuard/squidGuard.log
2013-05-15 04:03:34 [25109] squidGuard 1.4 started (1368583414.133)
2013-05-15 04:03:34 [25109] db update done
2013-05-15 04:03:34 [25109] squidGuard stopped (1368583414.609)
chown: cannot access `/var/log/squidGuard/*': No such file or directory
chmod: cannot access `/var/log/squidGuard/*': No such file or directory

These servers are giving different errors, but both lead back to Squid / Squid Guard / Squid log.

Just a shot in the dark do you think this could be related to the web filtering contrib?
Any ideas would be most welcome

thanks
john