Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Web Proxy Filtering and Caching
(Moderator:
fabian
) »
SQUID ACL category filtering logging
« previous
next »
Print
Pages: [
1
]
Author
Topic: SQUID ACL category filtering logging (Read 1810 times)
Azerty728
Newbie
Posts: 3
Karma: 0
SQUID ACL category filtering logging
«
on:
July 06, 2020, 10:36:28 pm »
Hello there,
Is there someone able to explain me how to enhance SQUID logs to add the category that was filtered in the logs ?
I'm using ACLs from Lille University and filtering some categories. But when a connection is dropped/blocked by SQUID, I'm only getting TCP_DENIED. I want to know which category was blocked. Is this only possible ? And if yes, how ?
I receive my logs by syslog to my Splunk.
Thank you.
Logged
Amr
Jr. Member
Posts: 78
Karma: 4
Re: SQUID ACL category filtering logging
«
Reply #1 on:
July 28, 2020, 08:09:23 am »
hello Azerty,
in basic squid log this is not possible, however, you can use a third-party app to do so like solar winds',there's also open-source solutions like sarg or light squid they have nice features like top users and top sites and user usage but don't tell you most blocked category.
Logged
Disclaimer: All advice presented is "AS IS", no warranties.
I'm not part of the opnsense team, just trying to help.
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Web Proxy Filtering and Caching
(Moderator:
fabian
) »
SQUID ACL category filtering logging