AIS Managed Firewall Squid and SquidGuard

These are very general instructions to be run on the AIS Managed Firewall. There are other options not discussed in this article. If you are looking for a way to block content for all users, this is very fast and easy. This can be pushed to all modern browsers.

In a Microsoft environment, you will need:

  1. DNS
  2. DHCP
  3. IIS

Process:

  1. Install Squid from the package manager.
  2. Check the “Enable” box.
  3. check the “Keep” box.
  4. choose the loopback and the LAN for Interface.
  5. Check the “Allow Users” box. 
  6. Scroll all the way down and check the “Enable Access Logging” box.
  7. Click “Advanced Settings”.
  8. Click Save.
  9. Install SquidGuard from the package manager.
  10. Create a SquidGuard Dummy - Services > SquidGuard > Target categories: Define a dummy target category.
  11. Name: Dummy
  12. Description: Dummy
  13. Leave remaining parameters blank.
  14. Click “Save”.
  15. Under Services > SG > General, there is a Logging section in the middle of the page. When starting this install and testing, check all three. When done, uncheck. 
  16. Still under General settings, click on “Blacklist” at bottom.
  17. Click “Save”.
  18. Go up to the top and click “Enable” and then “Apply”.
  19. Save at the bottom of the page.
  20. Apply after everything else.
  21. Go to “Common Access Control List”.
  22. In “Target Rules”, find your dummy target and set access to deny and set All to allow.
  23. Go to the bottom of the page and click “Save”. 
  24. Go to General Settings and select “Apply” to activate the configuration update.
  25. Now go to Blacklist and put this URL in the box: http://www.shallalist.de/Downloads/shallalist.tar.gz 1. Click “Go”.
  26. Wait until the box says “Blacklist update complete”. It may take a bit.
  27. Go back into “Common Access Control List” and click on the “+” in the Target Rules List.
  28. Set what you want to Deny.
  29. Apply after everything else.