Original Poster Posted June 4, 2014 Share Posted June 4, 2014 hello, I am using my debian pc as router and i want to block connections from places...a white list would be beneifcial for my purposes I want to block websites as well as APIs on websites making calls to external sites like twitter/facebook.... I want to make sure these connections are not even called to boost speed (I am on a very VERY VERY limited connection speed) i am using a cache server which works great but im trying to shave off a few more seconds... so i wont to cut out things that dont cache such as API requests and adverts etc any ideas will be welcome Link to comment Share on other sites More sharing options...
(Account no longer active) Posted June 4, 2014 Share Posted June 4, 2014 I could be wrong about this, but I presume you'd need to edit the hosts file on your Debian machine. Here's a guide: https://www.weg.ucar.edu/documentation/hostfile-unix.html Link to comment Share on other sites More sharing options...
Original Poster Posted June 4, 2014 Author Share Posted June 4, 2014 I could be wrong about this, but I presume you'd need to edit the hosts file on your Debian machine. Here's a guide: https://www.weg.ucar.edu/documentation/hostfile-unix.html I will look into this, I know there is a function in my proxy to sort out the websites... but I cannot seem to get it working...i am using squid Link to comment Share on other sites More sharing options...
Torolol Posted June 4, 2014 Share Posted June 4, 2014 using proxy you could (black-/white-)list specific urls but that only works on http, whlle on https your choice would be limited to either block it entirely or allow it all, ie only works at domain level for https connections. Link to comment Share on other sites More sharing options...
Shaun N. Posted June 4, 2014 Share Posted June 4, 2014 I also use squid proxy, it's very effective along side Dansguardian Link to comment Share on other sites More sharing options...
Original Poster Posted June 4, 2014 Author Share Posted June 4, 2014 I also use squid proxy, it's very effective along side Dansguardian got any tips on setting up the whitelist? I cant seem to get it working this is what I am inputting acl whitelist dstdomain .example.com .google.com .bing.com http_access allow whitelist do I have to http_access deny all ? and allow 192.168.2.0/24 ? I dont know with this proxy :( Link to comment Share on other sites More sharing options...
Shaun N. Posted June 4, 2014 Share Posted June 4, 2014 got any tips on setting up the whitelist? I cant seem to get it working this is what I am inputting acl whitelist dstdomain .example.com .google.com .bing.com http_access allow whitelist do I have to http_access deny all ? and allow 192.168.2.0/24 ? I dont know with this proxy :( For Squid or Dansguardian? Link to comment Share on other sites More sharing options...
Shaun N. Posted June 4, 2014 Share Posted June 4, 2014 For Squid or Dansguardian? For Squid it would be something like this acl localnet srv 192.168.1.0/25 http_access allow all whitelist http_access deny all http_port 8080 and set up your whitelist with sites or *.gov type sites You can take a look here for some examples http://www.webdnstools.com/articles/squid-proxy-whitelist Link to comment Share on other sites More sharing options...
Shaun N. Posted June 5, 2014 Share Posted June 5, 2014 How did you get on with this? Link to comment Share on other sites More sharing options...
Original Poster Posted June 5, 2014 Author Share Posted June 5, 2014 How did you get on with this? hello, I got it working in the end, it was all about placment (cheated a lil and used webmin) but now I have two problems to overcome... 1 is to use squid to block multimedia (which it seems to be refusing to do) and another is allow https traffic as well as http through the proxy so I can stop the streaming.... im stuck on this one Link to comment Share on other sites More sharing options...
Original Poster Posted June 5, 2014 Author Share Posted June 5, 2014 hello, I got it working in the end, it was all about placment (cheated a lil and used webmin) but now I have two problems to overcome... 1 is to use squid to block multimedia (which it seems to be refusing to do) and another is allow https traffic as well as http through the proxy so I can stop the streaming.... im stuck on this one the 443 traffic is mainly issues with the Iptables right now i believe... Link to comment Share on other sites More sharing options...
Recommended Posts