Error Connecting To Parent Proxy Smoothwall
Contents |
Links Squid Mirrors This document is depricated - please update your bookmarks to this page: http://sourceforge.net/docman/display_doc.php?docid=27215&group_id=131757 General FAQ Installation and Problem FAQ Configuration/Usage FAQ General FAQ Questions I want ACL-like features where different users and groups and subnets and times have different settings. Can DansGuardian do configure dansguardian this? When will NTLM be supported? Who are the developers? Why does it use Squid?
E2guardian
How much does it cost? Can I reverse the polarity? Which PICS rating services does it support? Does it check images for pornography? Is there commercial support available? Whats the mailing list for? Are you against porn or something? What's all this nonsense with blah at foo dot com? Why is DansGuardian called 'true' content filtering? Can DansGuardian do anti-virus filtering? Is DansGuardian CIPA compliant? Installation and Problem FAQ Questions After installing and running DansGuardian it does not appear to filter and/or log. During make install of DansGuardian it stops saying 'squid.squid: invalid user'. Ident no longer works in transparent proxy mode. During make it gives an error about zlib.h. Configuration/Usage FAQ Questions When using DansGuardian, the squid logs all point to localhost as source ip. I get "Error connecting to test proxy"? When trying to set up transparent proxying, I get errors, but with the host part of the url missing. It's running, but not filtering. On my RedHat 7.1 or SuSE, with large HTML pages, it is really slow, even with my 2Ghz Athlon. How do I use newsyslog on OpenBSD instead of your splendid rotation script? Debian online installs don't work through DansGuardian, neither do some other online updates such as Norton Anti Virus It gives an error on startup but it does not explain what the problem is. Since using DansGuardian my squid ACLs no longer work. Have you any recommendations for use in a large scale environment? General - Answers 1. I want ACL-like features where different users and groups and subnets and times have different settings. Can DansGuardian do this? No*. It can switch off filtering for certain users, sites and IPs, but not varying degrees. This ability you desire is called ACLs. Nor can it block for ranges of IPs or subnets. Nor can it block by time of day. If you need this install squidGuard also. *Actually as of version 2.7.5 it can have different filtering for groups of users but it still can't do time of day functionality nor subnets nor
ForumsCommunity Forums IndexRoadmapClearOS Roadmap OverviewClearOS Roadmap DetailsClearOS Release InfoClearOS Issue TrackerClearOS Feature RequestDevelopersDeveloper OverviewDeveloper Apps and FrameworkDeveloper ThemingDeveloper ArchitectureDeveloper PackagingDeveloper TranslationsDeveloper Source CodeDocumentation MainCodeClearOS Code BaseClearOS EULAClearOS Translation OverviewClearOS Translation Getting StartedClearOS Translation SystemCommunity Volunteer Form ProductsSubscriptionsClearOS 6 CommunityClearOS 6 ProfessionalClearOS 7 BusinessClearOS 7 HomeClearOS 7 CommunityClearOS 7 ComparisonLegacy EditionsHardwareClearBOX OverviewClearBOX 100 SeriesClearBOX 300 SeriesClearBOX 500 SeriesClearBOX 700 SeriesSupportClearCARE OverviewClearCARE Evaluation SupportClearCARE Level I SupportClearCARE Level II SupportClearCARE http://dansguardian.org/?page=faq Level III SupportSubmit A TicketSolutionsClearOS Solutions OverviewBusinessGovernmentEducationNot For ProfitPurchaseBuy ITClearOS Marketplace OverviewClearOS Marketplace AppsTry ITBuild ITDownload IT ResourcesFind a PartnerFind a Local PartnerFind A Local PartnerBe a PartnerPartner Program OverviewPartner Program BenefitsRegistered PartnerRecommended PartnerRegional PartnerPartner Program ApplicationCertificationsClearOS CertificationsIT Operating Platform CoursesCloud CoursesGateway CoursesNetwork https://www.clearos.com/clearfoundation/social/community/dansguardian-error-connecting-to-proxy CoursesServer CoursesSystem CoursesDocumentationDocumentation MainDocumentation OverviewClearOS 7 DocumentationClearOS 6 DocumentationClearOS 5 DocumentationGetting StartedWhat to ExpectDomain ServicesAnnouncementsRelease InfoManageClearCARE by Partner OverviewClearVM OverviewClearVM DocumentationClearVM Forums LOGINS Community Forums Forums Roadmap Development Learn More Authenticated as SIGNUP LOGIN ClearOS Portal Subscription Systems Support Learn More Authenticated as SIGNUP LOGIN ClearVM Platform Deploy Machines Admins Learn More Authenticated as SIGNUP LOGIN Community Forum Try IT → Buy IT → Subscribe via email Subscribe via email Subscribe via rss Select CategoryAPC Battery Backup ManagerApplication FilterAttack DetectorCloudDNSthingyGatewayMaster/Slave SynchronizationProtocol FilterReportsSamba Directory (Beta) Search or Ask a Question All Unresolved 1076 Resolved 12219 Unanswered 299 Latest Popular Add a reply View Replies (8) → achu Offline dansguardian: Error connecting to proxy Resolved 0 votes I have clearos enterprise 5.2 in non-transparent mode and configured content filter.But
von GoogleAnmeldenAusgeblendete FelderNach Gruppen oder Nachrichten suchen
Google images error Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] > acl s1_tls_connect at_step SslBump1 > acl s2_tls_client_hello at_step SslBump2 > acl s3_tls_server_hello at_step SslBump3 > > acl tls_server_name_is_ip ssl::server_name_regex \ > ^[0-9]+.[0-9]+.[0-9]+.[0-9]+n You have a letter 'n' on the end there is that intentional? It would seem so. I copied that from someone else's "peek-splice" directives that they said worked well for them. The actual regex in the perl script that writes squid.conf is *"print FILE "acl tls_server_name_is_ip ssl::server_name_regex ^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+$\n\n";*." > acl google ssl::server_name .google.com > ssl_bump peek s1_tls_connect all > > acl nobumpSites ssl::server_name .wellsfargo.com > > ssl_bump splice s2_tls_client_hello nobumpSites > ssl_bump splice s2_tls_client_hello google > > ssl_bump stare s2_tls_client_hello all > > ssl_bump bump s3_tls_server_hello all > > cache_peer forcesafesearch.google.com parent 443 0 \ > ssl name=GS originserver \ > no-query no-netdb-exchange no-digest > > acl search dstdomain .google.com > cache_peer_access GS allow search > cache_peer_access GS deny all I think the fake-CONNECT Squid creates still has only raw-IP:port details. And with splicing you dont have the decrypt to setup dstdomain URL details. For dstdomain you need to match what shows up in access.log as the URI of these requests. Does the "google" ACL work in cache_peer_access to use the SNI? The "dstdomain .google.com" was taken directly from an example that was provided. When I try to access *google.com