[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
I bow down to your worshipfulness. Unfortunately it appears squid isn't playing ball. The command tail outputted this. sudo tail -f /var/log/squid/access.log 1244717630.477 21728 10.0.48.112 TCP_MISS/000 0 GET http://www.google.com/ - DIRCT/www.google.com - 1244717711.962 81483 10.0.48.112 TCP_MISS/000 0 GET http://www.google.com/ - DIRCT/www.google.com - 1244717398.770 120721 10.0.48.112 TCP_MISS/504 1489 GET http://www.google.com/ - DIRECT/www.google.com text/html 1244717431.780 153730 10.0.48.112 TCP_MISS/504 1547 GET http://video.flashtalking.com/reportV3/ft.stat?10019173-0-19-1-052717E170E816-9070503 - DIRECT/video.flashtalking.com text/html 1244717431.780 155753 10.0.48.112 TCP_MISS/504 1547 GET http://video.flashtalking.com/reportV3/ft.stat?10019173-0-19-5-052717E170E816-9070503 - DIRECT/video.flashtalking.com text/html 1244717606.884 4893 10.0.48.112 TCP_MISS/000 0 CONNECT urs.microsoft.com:443 - NONE/- - 1244717607.490 5500 10.0.48.112 TCP_MISS/000 0 CONNECT urs.microsoft.com:443 - NONE/- - 1244717612.897 5407 10.0.48.112 TCP_MISS/000 0 CONNECT urs.microsoft.com:443 - NONE/- - 1244717612.990 5496 10.0.48.112 TCP_MISS/000 0 CONNECT urs.microsoft.com:443 - NONE/- - 1244717630.477 21728 10.0.48.112 TCP_MISS/000 0 GET http://www.google.com/ - DIRECT/www.google.com - 1244717711.962 81483 10.0.48.112 TCP_MISS/000 0 GET http://www.google.com/ - DIRECT/www.google.com - 1244717893.061 180204 127.0.0.1 TCP_MISS/504 360 GET http://www.google.com/ - DIRECT/209.85.227.147 text/html > Date: Thu, 11 Jun 2009 11:21:03 +0100 > From: rob@xxxxxxxxxxxxx > To: list@xxxxxxxxxxxxx > Subject: Re: [LUG] Dansguardian > > Austin Gossmeyer wrote: > > I am using ubuntu 9.04 > > > Right, I've installed Ubuntu 9.04 Desktop on a virtual machine (in > VirtualBox on top of Ubuntu 9.04). It should essentially be the same on > Ubuntu Server too. > > What I did was install the squid, dansguardian. I did this through a > terminal with the following command (although you could use Synaptic): > > sudo apt-get install dansguardian squid > > I said yes to the additional packages which were to be installed. > > When Dansguardian and Squid is installed, Dansguardian is unconfigured. > That is you need to go into the config file and at least remove the > UNCONFIGURED line from the configuration. Now I'm not sure if you're > running the Desktop version of Ubuntu or the server version, or which > your favourite editor is (my favourite is vi), but anyway, you need to > open /etc/dansguardian/dansguardian.conf in an editor as root. > > If you're running the Desktop version of Ubuntu then the easiest way of > editing this file is to press Alt F2 which opens the Run Application > box, then enter the following: > > gksudo gedit /etc/dansguardian/dansguardian.conf > > You'll be prompted for your password. > > If you prefer to do it via a terminal, or if you're running on the > server version of Ubuntu then run the following command: > > sudo nano /etc/dansguardian/dansguardian.conf > > If you go down to line 5 in the configuration file you'll see something > like this: > > UNCONFIGURED - Please remove this line after configuration > > Basically add a # before the UNCONFIGURED word to comment it out (I > prefer to do this than removing the line, just in case I need to disable > Dansguardian again). > > Now you can look through the configuration file and make any changes if > need be such as changing the log file location, I didn't make any > changes myself. > > When you've made any changes you want to make, save the file (click the > Save button in gedit or in nano press Control X which will prompt you to > save any changes, press Y to this question and then press enter to save > changes). > > Now restart Squid and Dansguardian... > > Open a terminal window (if you're on Ubuntu desktop) and enter the > following: > > sudo invoke-rc.d squid restart > sudo invoke-rc.d dansguardian restart > > You may be asked for your password when you run the first sudo command. > > Squid will take a few seconds to restart, Dansguardian is pretty instant > (took about a second to restart for me). > > Now comes the fun bit, testing it out. > > Basically you need to configure the proxy on a browser to look at the > Dansguardian machine. I did this in Firefox by going into the > Preferences, clicking on Advanced, going into the network tab and then > clicking on settings. > > I selected Manual Proxy configuration and entered the IP address of the > proxy machine and the port 8080. > > Then try browsing to a site which should be blocked (simply going to > google and searching for 'boobs' was enough for Dansguardian to block > it). You should hopefully see an Access Denied page and it will give a > reason why the page was blocked (in this case the Weighted Phrase Limit > was exceeded in the category Pornography). > > You can tweak the settings for the filters in the > /etc/dansguardian/dansguardian.conf and > /etc/dansguardian/dansguardianf1.conf files (just use the instructions > above for editing these files). I left these as default for when my > kids browse the net but you can tweak them to enable and disable > categories as you wish. > > To troubleshoot that machines are trying to access the proxy, open up a > terminal and run the following command: > > sudo tail -f /var/log/squid/access.log > > and then try browsing to a web site on the machine that is configured to > use the proxy. You should get some output on the screen which relates > to what site you're browsing to. If you do then Squid is probably working. > > Then try: > > sudo tail -f /var/log/dansguardian/access.log > > and again try doing a google search for something which should be > blocked (for instance, doing a google search for the word boobs). It > should then come up with the URL of Google in the log plus the warning > message about the page being blocked, plus a whole load of words which > it uses for blocking. If this happens then Dansguardian should be > working fine. > > Hopefully this will be of use to you. > > You'll need to make sure you point the machines to look at the IP > address of the Dansguardian machine at port 8080. Dansguardian listens > for requests on port 8080, then talks to Squid using port 3128. If you > configure the machines to use the Dansguardian IP address but use port > 3128 you will get an access denied message. > > Now with regards to Dansguardian as a transparent proxy, I haven't gone > this on Ubuntu but I did find a link which may be helpful, it's a guide > written by someone who is involved with Ubuntu Christian Edition, it > looks like it covers setting up a proxy machine which sits in between > the connection from the ISP and the rest of the network. I haven't > tried it myself but it might give you a few pointers anyway: > http://taksuyama.com/?p=16#more-16 > > Hope this all helps. > > Rob > > > > -- > The Mailing List for the Devon & Cornwall LUG > http://mailman.dclug.org.uk/listinfo/list > FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html Lauren found her dream laptop. Find the PC that’s right for you. |
-- The Mailing List for the Devon & Cornwall LUG http://mailman.dclug.org.uk/listinfo/list FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html