Squid content filtering: Block / download of music MP3, mpg, mpeg, exec files
Q. For security and to save bandwidth I would like to configure Squid proxy server such way that I do not want my users to download all of the following files:
MP3
MPEG
MPG
AVG
AVI
EXE
How do I configure squid content filtering?
A. You can use squid ACL (access control list) to block all these files easily.
How do I block music files using squid content filtering ACL?
First open squid.conf file /etc/squid/squid.conf:
# vi /etc/squid/squid.conf
Now add following lines to your squid ACL section:
acl blockfiles urlpath_regex "/etc/squid/blocks.files.acl"
You want display custom error message when a file is blocked:# Deny all blocked extension
deny_info ERR_BLOCKED_FILES blockfiles
http_access deny blockfiles
Save and close the file.
Create custom error message HTML file called ERR_BLOCKED_FILES in /etc/squid/error/ directory or /usr/share/squid/errors/English directory.# vi ERR_BLOCKED_FILES
Append following content:
</span>ERROR<span style="color: #990000">:</span> Blocked <span style="font-weight: bold"><span style="color: #0000FF">file</span></span> content<span style="color: #FF0000"> File is blocked due to new IT policy
Please contact helpdesk for more information:
Phone: 555-12435 (ext 44)
Email: helpdesk@yourcorp.com
Caution: Do not include HTML close tags as it will be closed by squid.
Now create /etc/squid/blocks.files.acl file:# vi /etc/squid/blocks.files.acl
Append following text:\.[Ee][Xx][Ee]$
\.[Aa][Vv][Ii]$
\.[Mm][Pp][Gg]$
\.[Mm][Pp][Ee][Gg]$
\.[Mm][Pp]3$
Save and close the file. Restart Squid:# /etc/init.d/squid restart
Squid in action:
(Click to enlarge)
Comments
Post a Comment