Netgate m1n1wall

Author Topic: How to block port 80 for some clients ?  (Read 1479 times)

0 Members and 1 Guest are viewing this topic.

Offline arushi

  • Newbie
  • *
  • Posts: 5
    • View Profile
How to block port 80 for some clients ?
« on: April 17, 2012, 04:17:06 am »
I have pfsense 2.0.1-RELEASE (i386) and it works very well.
i have squid and squidguard installed  and i need to close port 80 for some client.
Before installing squid everything was ok but now i cant close this port

This is the configuration :




Thank you

Offline cmb

  • Administrator
  • Hero Member
  • *****
  • Posts: 6299
    • LinkedIn
    • Twitter
    • View Profile
    • Chris Buechler
Re: How to block port 80 for some clients ?
« Reply #1 on: April 17, 2012, 04:17:46 am »
transparent Squid bypasses firewall rules. You'll have to block them within Squid.

Offline arushi

  • Newbie
  • *
  • Posts: 5
    • View Profile
Re: How to block port 80 for some clients ?
« Reply #2 on: April 17, 2012, 04:30:22 am »
Can you explain me more detailed ?
Any printscreen or any rule ?
thank you in advance

Offline dvserg

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 4779
    • View Profile
    • My Homepage
Re: How to block port 80 for some clients ?
« Reply #3 on: April 17, 2012, 04:44:10 am »
Services > Proxy Server > Access Control > Banned host addresses

Offline arushi

  • Newbie
  • *
  • Posts: 5
    • View Profile
Re: How to block port 80 for some clients ?
« Reply #4 on: April 17, 2012, 05:39:45 am »
Thank You
You help me a lot
 :)

Offline arushi

  • Newbie
  • *
  • Posts: 5
    • View Profile
Re: How to block port 80 for some clients ?
« Reply #5 on: April 17, 2012, 07:58:29 am »
It works, but this users that i block on "Banned host addresses" can open the web pages with https (port 443)
How can i close this port for this clients??
;)

Offline marcelloc

  • Hero Member
  • *****
  • Posts: 9954
    • View Profile
Re: How to block port 80 for some clients ?
« Reply #6 on: April 17, 2012, 08:13:35 am »
It works, but this users that i block on "Banned host addresses" can open the web pages with https (port 443)
How can i close this port for this clients??
;)
Transparent proxy does not filter port 443. Create a firewall -> rule to block it.