Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
20.1 Legacy Series
»
Difference between Squid ACL vs DNSBL
« previous
next »
Print
Pages: [
1
]
Author
Topic: Difference between Squid ACL vs DNSBL (Read 3026 times)
ArminF
Full Member
Posts: 205
Karma: 11
Difference between Squid ACL vs DNSBL
«
on:
February 11, 2020, 09:45:02 pm »
Hello,
what is the difference between using Squid with ACL blocklists (URL, Malware, Suspicious Sources) and DNSBL through a DNS like Unbound or bind?
Does it make sense to run both parallel? As far i understood both strategies act the same.
thank you!
A
«
Last Edit: February 11, 2020, 10:01:59 pm by ArminF
»
Logged
English: Never try, never know!
Deutsch: Unversucht ist Unerfahren!
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Difference between Squid ACL vs DNSBL
«
Reply #1 on:
February 11, 2020, 10:41:59 pm »
Similar, yes, but in theory you could also use URIs with Squid
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
bartjsmit
Hero Member
Posts: 2017
Karma: 194
Re: Difference between Squid ACL vs DNSBL
«
Reply #2 on:
February 12, 2020, 10:12:28 am »
Unbound or bind only block DNS requests. If a client connects on an IP address (e.g. through a hosts file) they will bypass the block.
Allowing only outbound HTTP(S) from Squid plugs that hole.
You can use both to improve performance, since a lot of blacklisted DNS requests will be cached.
Bart...
Logged
ArminF
Full Member
Posts: 205
Karma: 11
Re: Difference between Squid ACL vs DNSBL
«
Reply #3 on:
February 12, 2020, 10:15:47 am »
Gentlemen,
thank you very mich for your kind help and explanation!
Will go configure and test further.
Also started to document my changes.
thank you
armin
Logged
English: Never try, never know!
Deutsch: Unversucht ist Unerfahren!
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
20.1 Legacy Series
»
Difference between Squid ACL vs DNSBL