OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of dataseg »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - dataseg

Pages: [1]
1
16.7 Legacy Series / Re: Proxy access rules per group
« on: April 07, 2017, 05:55:03 pm »
Hi!
I'm also interested in this feature, and I still haven't found a way to set rules per group of users via GUI.
@fabian & @monstermania: Could you, please, tell us which are the proxy config files? Please, excuse me if this is an obvious "rtfm" question... Or just tell us the folder(s)...

With regards,
Daniel Tase Guerra

2
Spanish - Español / Re: CONFIGURACIÓN DE PROXY
« on: April 04, 2017, 04:45:32 pm »
Saludos.
Estoy buscando también solución a cómo configurar el proxy para permitir a determinados usuarios acceso a diferentes websites o servicios, de una manera jerárquica, algo similar a la estructura del directorio activo de windows en la empresa donde trabajo.
¿Es esto posible?
En un intento, aún sin probar, creé archivos /usr/local/etc/squid/pre-auth/pre.conf y /usr/local/etc/squid/post-auth-post.conf en espera de que de esta manera funcione... Luego les digo...

Gracias,
Daniel Tasé Guerra

3
17.1 Legacy Series / Is it possible to use hosts aliases from firewall section into proxy acl's?
« on: April 04, 2017, 04:16:50 pm »
Hello, OPNsense team! please, excuse my english...
First, congratulations for your excellent work.
I plan to use OPNsense 17.1 in the local subnet of my enterprise, trying to enforce security in our LAN by configuring the network with the firewall, proxy and IDS services according with our policies.
So far with the firewall part, everything seems OK in tests, as we define the "common sense" rules to allow only traffic to/from our LAN and our 'parent' ISP.
Still untouched the intrusion detection part.
In the proxy configuration I can't see a way to differentiate users and/or hosts to allow different access levels to some urls or websites. For example: users A and B will have access to some sites, and users C and D to another sites.
Also, I defined an alias with the IPs from some users, hoping to use it in the acl definition of the proxy, but that's not possible, I think.

Please, can someone give me some tips?

Best regards,
Daniel Tase Guerra

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2023 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2