|
| Name of
MOD : |
SquidGuard-1.2.0-GUI-b10.tar.gz IPCop 1.4.0/1.4.2
SquidGuard-1.2.0-GUI-b11.tar.gz IPCop 1.4.4/1.4.10 |
| Version of
MOD : |
1.2.0,
Author |
| Version and patch level of IPCop: | 1.4.0/1.4.2 or 1.4.4/1.4.10
Tested with IPCop 1.4.0/1.4.2, or 1.4.4/1.4.10 NOTE : MOD MAY work with other versions, but has only been tested with the versions listed. |
| Interface type : | GUI = Graphical user interface, the MOD is accessed from the Web Browser.
SquidGuard 
SquidGuard-Edit
SquidGuard-Log 
1.4.0/1.4.2 Version SquidGuard 
SquidGuard-Edit
SquidGuard-Log
1.4.4/1.4.10 Version, |
| Build Level: | b10 = Build 10
b11 = Build 11 Version b11 ONLY works with IPCop 1.4.4/1.4.10 and Addons-Server 2.3 and above. This represents minor changes to the MOD. See Changelog |
| Rating : | Green - Opens no ports to red. No known vulnerabilities. |
| Description : | This will give your IPCop the ability to analyze webpage requests, checks them against a database of blacklisted sites, and then either allow or deny access to the site. |
| Operation : | When a webpage request is sent to Squid, it is redirected to squidguard. SquidGuard can be configured for 3 different IP ranges. The ranges include "Privileged IP"s", for full unfiltered access, "Banned IP"s" these addresses that will have no access to the internet and, "Network IP"s", for IP"s that will have filtered access, the Network IP range can not be left blank. (NOTE: the default setting is blocked, if no IP ranges are set, then the Internet is blocked for all users.) If a workstation from the Network range requests a webpage, SquidGuard then checks the request against 11 different databases. These databases, include both URL, and domain listings. If a site is found in the database, the user is redirected to a "Blocked URL" page, and the reason for denial is given. |
| Setup : | Download and install
the Addon Server MOD first.
Second download the IPCop 1.4.0/1.4.2 Version of the MOD IPCop 1.4.4/1.4.10 Version of the MOD NOTE: if you Mail server requires a user name and password before sending mail, download and install the Update 01 using the addons-update page found in the System section of your IPCop. Update is included with b11. Third install using the Addons page found in your IPCop. No Reboot is required, the MOD will stop and restart the Web Server. |
| Configure : | SquidGuard for IPCop
Packaged for Addons Server 10 October 2003 Go to the "Services" section of IPCop Go to the squidguard configuration page and on the right side you will see 3 address ranges, Priviledged, Banned, and Network. - Priviledged IP Range is for workstations that need full unfiltered access to the internet, such as an admin workstation. - Banned IP Range is for workstations that have no access to the internet. - Network IP Range is for all workstations that have filtered access. The filters only work with the Network IP range. - In addition is a box for the Administrator Email address. Input the Network IP range such as: 192.168.0.50 - 192.168.0.60 or as single IP"s: 192.168.0.50 192.168.0.55 192.168.0.60 n the first example all IP"s from 192.168.0.50 thru 192.168.0.60 are included. In the second example ONLY 3 are included: 192.168.0.50 192.168.0.55 192.168.0.60 SquidGuard matches IP"s in the order they are listed - Priviledged - Banned - Network If you have a Banned workstation that falls in the Priviledged range, the workstation will be Priviledged. If you have a Network workstation that falls in the Banned range, it will be banned. You can chose any range that you need, a good starting place would be to use the same range as the DHCP server is running. That way any workstation that is using DHCP is filtered. In addition SquidGuard can be disabled by going to the "web proxy" page and hitting the "SAVE" button and reenabled by hitting the "Start/Restart" button on the SquidGuard page. In build 9 I have added an "Update Blacklists" button. This feature will download, install, rebuild the database, and restart Squid and Squidguard. In addition the squidGuard log is set to rotate when the logs files rotate these logs are found in /var/log/squidGuard. When you are finished with the setup hit the "Start/Reststart" button on the SquidGuard page and Squid will be restarted. It may take 30 seconds or more for Squid to restart, it has to read all the selected blacklist files. At any time you can update the blacklists with the "Update Blacklists" button. The Blacklists are updated weekly. Build 10 I have included a "whitelist" and a "blacklist", the whitelist is for adding sites that should not be blocked, and the blacklist is for adding sites that should be blocked. After adding the URL"s or IP addresses update the database, and restart SquidGuard. Also in build 10 is an Automatic/Manual blacklist update feature. If set to automatic the blacklists are updated on Sunday at midnight, if you are using a dialup connection it will update only after connecting to the Internet. And finally I have added a feature to Email the logs to the Administrator"s Email account, and as in the case of a dialup account, it will only mail those logs after connecting to the Internet. NOTE: Due to large amount to log entries due to logging "ads", I have now included an "Enable Ads Logging" button, enable this to view the blocked ads in the logs. ###################### Update-01 Changelog. This update is only needed if your Mail requires SMTP authentication. Added are fields to allow STMP authentication. In the Mail Username field enter your Email account name. In the Mail Pasword field enter your Email account password. Update is for Version b10 only. |
| ChangeLog : |
SquidGuard 1.2.0 for IPCop.
27 August 2005 Updated for IPCop 1.4.8 19 March 2005 Build 11 Updated SquidGuard to version b11 because of changes installed with IPCop updates 1.4.3 and 1.4.4. Build 11 only installs on Addons-Server 2.3 or above. Included SMTP authentication update from Build 10 06 November 2004 Update-01 Changelog. This update is only needed if your Mail requires SMTP authentication. Added are fields to allow STMP authentication. In the Mail Username field enter your Email account name. In the Mail Pasword field enter your Email account password. 08 August 2004 Build 10 Added editable "blacklists" and "whitlists", logging, autoupdate and now mails the logs to the administrator Added support for 1.4.0 04 February 2004 Build 9 Updated for use with Addon Server 2.1 Removed SquidGuard from the proxy.cgi and placed it in it"s own page. No longer overwrites the proxy.cgi file Removed the "Enabled" checkbox. Now started from "Start/Restart" button on screen. Disabled by hitting the "Save" button on the Web Proxy page. Added the option to update the blacklists from the GUI. 21 October 2003 Build 8a Added support for German Added README 16 October 2003 Build 8 Repackaged for use with the Addon Server. 14 September 2003 Build 7 Added new "Smart Setup" install script. Added new Naming Convention Added new Rating System Added MD5SUMS No longer replaces httpd.conf file with my own, it now adds or removes my changes without affecting any other changes. The database is now excluded from the system backup utility. 02 September 2003 Build 6 Blacklists Updated Sep 1 2003 Build 5 Updated to work with IPCop 1.3.0 fixes 1,2, & 3 21 July 2003 Build 4 I discovered a possible flaw in the squid.conf file. After further examination I determined the code was correct. Scraped build 4 and replaced it with build 3 19 May 2003 Build 3 New Setup Script and GUI added Date unknown Build 2 Never released 4 May 2003 Build 1 Command line only version |