Messages

1

Web Proxy Filtering and Caching / Re: New setup (newbie) issue with Web filter & internet access

« on: January 18, 2020, 01:40:26 pm »

The help Text of the transparent port contains a link to generate the rule.

Sorry, I don't know what transparent proxy is, do I have to use it?

Edit: I set everything up but still can't connect when i enable firewall rules.

Edit2: Everything works except proxy bypass, urls in the list return access denied error.

Edit3: Download ACLs works only the first time for ut1. After first time i cannot fetch categories.

2

Web Proxy Filtering and Caching / Re: New setup (newbie) issue with Web filter & internet access

« on: January 18, 2020, 01:00:03 pm »

Hi,

yes, transparent means the client doesn't see any configuration for this. In order to do this you would need:
1. a NAT rule which redirects your web traffic to your proxy (for example redirect port 80 to 3128)
2. a firewall rule which allows your client to connect to your transparent port (for example 3128)

Please post your rule setup.

Edit: also check this https://docs.opnsense.org/manual/how-tos/proxytransparent.html

BR,
NR

How can I redirect port 80 to 3128?
Do I need to disable rules from the OPNsense docs? Can redirection work while there is a block rule?

3

Web Proxy Filtering and Caching / Re: New setup (newbie) issue with Web filter & internet access

« on: January 18, 2020, 12:42:39 pm »

Hi,
I'm suffering from the same issue. I'm pretty ignorant on the matter. Have no prior experience and i don't have a good understanding of the network stuff. The topic has already been resurrected recently so I think you wouldn't mind.

I'm using an old computer via the live mode(Serial image flashed by Rufus).
It has half a gig ram, I'm only using it for testing and learning.
I just let it run without touching anything, I did nothing except this one: https://docs.opnsense.org/manual/how-tos/proxywebfilter.html
Didn't run wizard either. I wouldn't know what to do with it anyways.

Also using an old ethernet card with it.

Internet ==> Switch ==> Old ethernet card ==> Old computer (OPNsense live) onboard ethernet port ==> Wireless access point. When I switch ports on the old computer it no longer works, so I think LAN, WAN interfaces are set up correctly.

What is working:
- Can connect to the internet, no issue
- Firewall rules seem to work fine when I disabled rules no device was able to access the internet while they could access OPNsense.
- Downloaded ACL and fetched categories without issues. I applied but have no idea if it would work.
- Enabling proxy does display the green button.

What I want:
- Web filter, obviously. If there is a better alternative to achieve this pls do tell me. Like e2guardian, it's not possible on OPNsense, is it?
- Intended for large areas, the users should not have to set up anything on their devices.