Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
17.7 Legacy Series
»
Proxy Web Filtering
« previous
next »
Print
Pages: [
1
]
Author
Topic: Proxy Web Filtering (Read 5928 times)
did
Newbie
Posts: 2
Karma: 0
Proxy Web Filtering
«
on:
November 03, 2017, 03:11:28 pm »
I am using 17.7.5 version of OPNsense.
I activated the web proxy and configured the web filtering with the UT Toulouse blacklist : OK it works but :
1) Users' web access to banned sites are not logged
2) It is currently not possible to customize the error message returned to the user (the current message is not very explicit)
Does anyone have informations ?
Is this a problem in my configuration ?
Is there any evolution of OPNsense in this direction ?
Thank you for your replies,
Regards,
Didier
Logged
FCM
Newbie
Posts: 40
Karma: 1
Re: Proxy Web Filtering
«
Reply #1 on:
November 03, 2017, 03:27:12 pm »
hello Didier,
Under Administration you have your access logs but you have to activate it via Admin/general proxy settings/Enable store logging
For the message, it's Squid related, so you have to edit you squid web site, it's not doable in Opnsense...
Logged
fabian
Hero Member
Posts: 2769
Karma: 200
OPNsense Contributor (Language, VPN, Proxy, etc.)
Re: Proxy Web Filtering
«
Reply #2 on:
November 03, 2017, 07:59:41 pm »
the files are somewhere in /usr/local/etc/squid if you are looking for them - they are not rewritten via the GUI so they are the squid default templates.
Logged
Wayne Train
Full Member
Posts: 194
Karma: 12
Re: Proxy Web Filtering
«
Reply #3 on:
November 09, 2017, 01:57:49 pm »
Another question: Is it possible to proxy https traffic without tls-interception ?
Logged
did
Newbie
Posts: 2
Karma: 0
Re: Proxy Web Filtering
«
Reply #4 on:
November 16, 2017, 03:57:26 pm »
Hello FCM and fabian
Thank you for your answers.
1) concerning the proxy logs : they are actually activated but this is not very practical because :
Every evening at 0:00, the logs are archived in an access.log.i.z file ; so my question is :
how do you practice to consult a log of a previous day ?
(indeed, it is not possible via GUI)
It is not easy to find the web access of the users to the forbidden sites because these accesses are mixed with those which are authorized. Only the key word "DENIED" makes it possible to find them ; so my question is :
is there an easier way to find access to banned sites ?
2) To customize the error message, the file is /usr/local/etc/squid/xx/ERR_ACCESS_DENIED
--> OK it works
Logged
FCM
Newbie
Posts: 40
Karma: 1
Re: Proxy Web Filtering
«
Reply #5 on:
November 17, 2017, 01:36:38 pm »
hello,
for the logs I did a a cron job that save the file each day and erase them after X days
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
17.7 Legacy Series
»
Proxy Web Filtering