[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] Dansguardian

To: Devon Cornwall Linux User Group <list@xxxxxxxxxxxxx>
Subject: Re: [LUG] Dansguardian
From: Austin Gossmeyer <ancwg@xxxxxxxxxxx>
Date: Thu, 11 Jun 2009 10:53:15 +0000

I bow down to your worshipfulness. Unfortunately it appears squid isn't playing ball. The command tail outputted this.

sudo tail -f /var/log/squid/access.log
1244717630.477 21728 10.0.48.112 TCP_MISS/000 0 GET http://www.google.com/ - DIRCT/www.google.com -
1244717711.962 81483 10.0.48.112 TCP_MISS/000 0 GET http://www.google.com/ - DIRCT/www.google.com -
1244717398.770 120721 10.0.48.112 TCP_MISS/504 1489 GET http://www.google.com/ - DIRECT/www.google.com text/html
1244717431.780 153730 10.0.48.112 TCP_MISS/504 1547 GET http://video.flashtalking.com/reportV3/ft.stat?10019173-0-19-1-052717E170E816-9070503 - DIRECT/video.flashtalking.com text/html
1244717431.780 155753 10.0.48.112 TCP_MISS/504 1547 GET http://video.flashtalking.com/reportV3/ft.stat?10019173-0-19-5-052717E170E816-9070503 - DIRECT/video.flashtalking.com text/html
1244717606.884   4893 10.0.48.112 TCP_MISS/000 0 CONNECT urs.microsoft.com:443 - NONE/- -
1244717607.490   5500 10.0.48.112 TCP_MISS/000 0 CONNECT urs.microsoft.com:443 - NONE/- -
1244717612.897   5407 10.0.48.112 TCP_MISS/000 0 CONNECT urs.microsoft.com:443 - NONE/- -
1244717612.990   5496 10.0.48.112 TCP_MISS/000 0 CONNECT urs.microsoft.com:443 - NONE/- -
1244717630.477 21728 10.0.48.112 TCP_MISS/000 0 GET http://www.google.com/ - DIRECT/www.google.com -
1244717711.962 81483 10.0.48.112 TCP_MISS/000 0 GET http://www.google.com/ - DIRECT/www.google.com -
1244717893.061 180204 127.0.0.1 TCP_MISS/504 360 GET http://www.google.com/ - DIRECT/209.85.227.147 text/html

> Date: Thu, 11 Jun 2009 11:21:03 +0100
> From: rob@xxxxxxxxxxxxx
> To: list@xxxxxxxxxxxxx
> Subject: Re: [LUG] Dansguardian
>
> Austin Gossmeyer wrote:
> > I am using ubuntu 9.04
> >
> Right, I've installed Ubuntu 9.04 Desktop on a virtual machine (in
> VirtualBox on top of Ubuntu 9.04). It should essentially be the same on
> Ubuntu Server too.
>
> What I did was install the squid, dansguardian. I did this through a
> terminal with the following command (although you could use Synaptic):
>
> sudo apt-get install dansguardian squid
>
> I said yes to the additional packages which were to be installed.
>
> When Dansguardian and Squid is installed, Dansguardian is unconfigured.
> That is you need to go into the config file and at least remove the
> UNCONFIGURED line from the configuration. Now I'm not sure if you're
> running the Desktop version of Ubuntu or the server version, or which
> your favourite editor is (my favourite is vi), but anyway, you need to
> open /etc/dansguardian/dansguardian.conf in an editor as root.
>
> If you're running the Desktop version of Ubuntu then the easiest way of
> editing this file is to press Alt F2 which opens the Run Application
> box, then enter the following:
>
> gksudo gedit /etc/dansguardian/dansguardian.conf
>
> You'll be prompted for your password.
>
> If you prefer to do it via a terminal, or if you're running on the
> server version of Ubuntu then run the following command:
>
> sudo nano /etc/dansguardian/dansguardian.conf
>
> If you go down to line 5 in the configuration file you'll see something
> like this:
>
> UNCONFIGURED - Please remove this line after configuration
>
> Basically add a # before the UNCONFIGURED word to comment it out (I
> prefer to do this than removing the line, just in case I need to disable
> Dansguardian again).
>
> Now you can look through the configuration file and make any changes if
> need be such as changing the log file location, I didn't make any
> changes myself.
>
> When you've made any changes you want to make, save the file (click the
> Save button in gedit or in nano press Control X which will prompt you to
> save any changes, press Y to this question and then press enter to save
> changes).
>
> Now restart Squid and Dansguardian...
>
> Open a terminal window (if you're on Ubuntu desktop) and enter the
> following:
>
> sudo invoke-rc.d squid restart
> sudo invoke-rc.d dansguardian restart
>
> You may be asked for your password when you run the first sudo command.
>
> Squid will take a few seconds to restart, Dansguardian is pretty instant
> (took about a second to restart for me).
>
> Now comes the fun bit, testing it out.
>
> Basically you need to configure the proxy on a browser to look at the
> Dansguardian machine. I did this in Firefox by going into the
> Preferences, clicking on Advanced, going into the network tab and then
> clicking on settings.
>
> I selected Manual Proxy configuration and entered the IP address of the
> proxy machine and the port 8080.
>
> Then try browsing to a site which should be blocked (simply going to
> google and searching for 'boobs' was enough for Dansguardian to block
> it). You should hopefully see an Access Denied page and it will give a
> reason why the page was blocked (in this case the Weighted Phrase Limit
> was exceeded in the category Pornography).
>
> You can tweak the settings for the filters in the
> /etc/dansguardian/dansguardian.conf and
> /etc/dansguardian/dansguardianf1.conf files (just use the instructions
> above for editing these files). I left these as default for when my
> kids browse the net but you can tweak them to enable and disable
> categories as you wish.
>
> To troubleshoot that machines are trying to access the proxy, open up a
> terminal and run the following command:
>
> sudo tail -f /var/log/squid/access.log
>
> and then try browsing to a web site on the machine that is configured to
> use the proxy. You should get some output on the screen which relates
> to what site you're browsing to. If you do then Squid is probably working.
>
> Then try:
>
> sudo tail -f /var/log/dansguardian/access.log
>
> and again try doing a google search for something which should be
> blocked (for instance, doing a google search for the word boobs). It
> should then come up with the URL of Google in the log plus the warning
> message about the page being blocked, plus a whole load of words which
> it uses for blocking. If this happens then Dansguardian should be
> working fine.
>
> Hopefully this will be of use to you.
>
> You'll need to make sure you point the machines to look at the IP
> address of the Dansguardian machine at port 8080. Dansguardian listens
> for requests on port 8080, then talks to Squid using port 3128. If you
> configure the machines to use the Dansguardian IP address but use port
> 3128 you will get an access denied message.
>
> Now with regards to Dansguardian as a transparent proxy, I haven't gone
> this on Ubuntu but I did find a link which may be helpful, it's a guide
> written by someone who is involved with Ubuntu Christian Edition, it
> looks like it covers setting up a proxy machine which sits in between
> the connection from the ISP and the rest of the network. I haven't
> tried it myself but it might give you a few pointers anyway:
> http://taksuyama.com/?p=16#more-16
>
> Hope this all helps.
>
> Rob
>
>
>
> --
> The Mailing List for the Devon & Cornwall LUG
> http://mailman.dclug.org.uk/listinfo/list
> FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html

Lauren found her dream laptop. Find the PC that’s right for you.

-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html

Follow-up: Re: [LUG] Dansguardian
- From: Rob Beard

References:
- [LUG] Dansguardian
  - From: Austin Gossmeyer
- Re: [LUG] Dansguardian
  - From: Rob Beard
- Re: [LUG] Dansguardian
  - From: Austin Gossmeyer
- Re: [LUG] Dansguardian
  - From: Rob Beard
- Re: [LUG] Dansguardian
  - From: Austin Gossmeyer
- Re: [LUG] Dansguardian
  - From: Rob Beard

Prev by Date: Re: [LUG] Mounting Partitions
Next by Date: Re: [LUG] Mounting Partitions
Previous by thread: Re: [LUG] Dansguardian
Next by thread: Re: [LUG] Dansguardian
Index(es):
- Date
- Thread