Problemas com bloqueios de site

1. Problemas com bloqueios de site

thuliojp
(usa Debian)

Enviado em 24/08/2015 - 15:58h

Boa tarde pessoal!
Estou com problemas para bloquear sites.
Alguém pode me dar uma força?

squid.conf

######################
##CONFIGURAÇÃO SQUID##
######################

http_port 192.168.100.1:3128
visible_hostname proxy.empresa.com.br

############################
# Autenticação por usuario #
############################

auth_param basic realm Linux ( Proxy-fire: Digite Usuario e Senha:)
auth_param basic program /usr/lib/squid3/ncsa_auth /etc/squid3/acls/passwd

##############
# ACL PADRÃO #
##############

#acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl SSL_ports port 443 563 # https, snews
acl safe_ports port 80 # http
acl safe_ports port 21 # ftp
acl safe_ports port 443 563 # https, snews
acl safe_ports port 70 # gopher
acl safe_ports port 210 # wais
acl safe_ports port 280 # http-mgmt
acl safe_ports port 488 # gss-http
acl safe_ports port 591 # filemaker
acl safe_ports port 777 # multiling http
acl safe_ports port 901 # swat
acl safe_ports port 1025-65535 # Portas Altas
acl purge method PURGE
acl CONNECT method CONNECT
acl redelocal src 192.168.100.0/24

##################
# ACL DE USUARIO #
##################

acl producao proxy_auth -i "/etc/squid3/acls/grupos/producao" REQUIRED
http_access allow producao

acl gerencia proxy_auth -i "/etc/squid3/acls/grupos/gerencia" REQUIRED
http_access allow gerencia

acl diretoria proxy_auth -i "/etc/squid3/acls/grupos/diretoria" REQUIRED
http_access allow diretoria

acl p_infra proxy_auth -i "/etc/squid3/acls/grupos/producao" REQUIRED
http_access allow p_infra

acl rh proxy_auth -i "/etc/squid3/acls/grupos/rh" REQUIRED
http_access allow rh

acl segtb proxy_auth -i "/etc/squid3/acls/grupos/segtb" REQUIRED
http_access allow segtb

#####################
# ACL DE PERMISSOES #
#####################

acl palavrasnegativas url_regex -i "/etc/squid3/acls/listas/palavrasnegativas"
acl sitesliberados url_regex -i "/etc/squid3/acls/listas/sitesliberados"
acl sitesbloqueados url_regex -i "/etc/squid3/acls/listas/sitesbloqueados"
acl extencoes urlpath_regex -i "/etc/squid3/acls/listas/extencoes"
acl governo url_regex -i "/etc/squid3/acls/listas/governo"
acl sites_rh url_regex -i "/etc/squid3/acls/listas/sites_rh"
acl sites_p_infra url_regex -i "/etc/squid3/acls/listas/sites_p_infra"
acl sites_segtb url_regex -i "/etc/squid3/acls/listas/sites_segtb"
acl sites_gerencia url_regex -i "/etc/squid3/acls/listas/sites_gerencia"

##########################
# BLOQUEIOS E PERMISSOES #
##########################

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny PURGE
http_access deny Safe_ports

http_access allow sitesliberados
http_access allow sitesliberados producao rh segtb p_infra gerencia diretoria
http_access allow governo
http_access allow governo producao rh segtb p_infra gerencia diretoria
http_access allow sites_rh rh gerencia !producao !p_infra !segtb diretoria
http_access allow sites_p_infra p_infra !rh gerencia !producao !segtb diretoria
http_access allow sites_segtb segtb !p_infra !rh gerencia !producao diretoria
http_access allow sites_gerencia gerencia !segtb !p_infra !rh !producao diretoria
http_access deny palavrasnegativas producao rh segtb p_infra gerencia !diretoria
http_access allow diretoria
http_access allow localhost
http_access allow redelocal
http_access deny sitesbloqueados gerencia segtb p_infra rh producao !diretoria
http_access deny all

Agradeço pela atenção

1 0

Quote