kanotix.com :: Thema anzeigen - Setting up Firehol-Tinyproxy-Dansguardian

kanotix.com

General Support - Setting up Firehol-Tinyproxy-Dansguardian

LRC - 04.09.2006, 07:50 Uhr
Titel: Setting up Firehol-Tinyproxy-Dansguardian

I saw an Ubuntu posting about such a setup, that was very easy and and straight forward. Yah right. The order I started them was Firehol, Tinyproxy, and Dansguardian. Firehol and Tinyproxy started fine, Dansguardian came back with a DansGuardian: Error connecting to parent proxy. There is very little documentation That I can understand or applies out there, and at times totally contradicting. These are the grep of the three files in question, * lines are the ones I was to modify.
Firehol
__________________________________________________________
version 5
*iptables -t filter -I OUTPUT -d 127.0.0.1 -p tcp --dport 3128 -m owner ! --uid-owner dansguardian -j DROP
*transparent_squid 8080 "proxy root"
*interface any world
*policy drop
* protection strong
*client all accept
* server cups accept
interface eth0 lan src "192.168.7.0/24" dst 192.168.7.151
policy drop
server ICMP accept
server cups accept
server dns accept
server microsoft_ds accept
server ntp accept
server samba accept
server ssh accept
client all accept
interface eth0 internet src not "${UNROUTABLE_IPS} 192.168.7.0/24" dst 192.168.7.151
policy drop
protection strong
server ICMP accept
server cups accept
server dns accept
server microsoft_ds accept
server ntp accept
server samba accept
server ssh accept
client all accept
_______________________________________________________________
Tinyproxy
______________________________________
*User root
*Group root
*Port 3128
Listen 192.168.7.151
Timeout 600
DefaultErrorFile "/usr/share/tinyproxy/default.html"
StatFile "/usr/share/tinyproxy/stats.html"
Logfile "/var/log/tinyproxy.log"
LogLevel Info
PidFile "/var/run/tinyproxy.pid"
MaxClients 100
MinSpareServers 5
MaxSpareServers 20
StartServers 10
MaxRequestsPerChild 0
Allow 127.0.0.1
Allow 192.168.1.0/24
ViaProxyName "tinyproxy"
ConnectPort 443
ConnectPort 563
_____________________________
Danguardian
______________________________
reportinglevel = 3
languagedir = '/etc/dansguardian/languages'
language = 'ukenglish'
loglevel = 2
logexceptionhits = on
logfileformat = 1
filterip =
filterport = 8080
proxyip = 127.0.0.1
proxyport = 3128
accessdeniedaddress = 'http://YOURSERVER.YOURDOMAIN/cgi-bin/dansguardian.pl'
nonstandarddelimiter = on
usecustombannedimage = 1
custombannedimagefile = '/etc/dansguardian/transparent1x1.gif'
filtergroups = 1
filtergroupslist = '/etc/dansguardian/filtergroupslist'
bannediplist = '/etc/dansguardian/bannediplist'
exceptioniplist = '/etc/dansguardian/exceptioniplist'
banneduserlist = '/etc/dansguardian/banneduserlist'
exceptionuserlist = '/etc/dansguardian/exceptionuserlist'
showweightedfound = on
weightedphrasemode = 2
urlcachenumber = 2000
urlcacheage = 900
phrasefiltermode = 2
preservecase = 0
hexdecodecontent = 0
forcequicksearch = 0
reverseaddresslookups = off
reverseclientiplookups = off
createlistcachefiles = on
maxuploadsize = -1
maxcontentfiltersize = 256
usernameidmethodproxyauth = on
usernameidmethodident = off
preemptivebanning = on
forwardedfor = off
usexforwardedfor = off
logconnectionhandlingerrors = on
maxchildren = 120
minchildren = 8
minsparechildren = 4
preforkchildren = 6
maxsparechildren = 32
maxagechildren = 500
ipcfilename = '/tmp/.dguardianipc'
urlipcfilename = '/tmp/.dguardianurlipc'
nodaemon = off
nologger = off
softrestart = off
virusscan = on
virusengine = 'clamav'
tricklelength = 32768
firsttrickledelay = 30
followingtrickledelay = 60
exceptionvirusmimetypelist = '/etc/dansguardian/exceptionvirusmimetypelist'
maxcontentscansize = 262144
exceptionvirusextensionlist = '/etc/dansguardian/exceptionvirusextensionlist'
downloaddir = '/tmp/dgvirus'
virusscanexceptions = on
urlcachecleanonly = on
virusscannertimeout = 60
notify = 0
emaildomain = 'your.domain.com'
postmaster = 'postmaster@your.domain.com'
emailserver = '127.0.0.1:25'
localsocket = '/tmp/clamd'
clmaxfiles = 1500
clmaxreclevel = 3
clmaxfilesize = 10485760
clmaxratio = 250

LRC - 07.09.2006, 04:30 Uhr
Titel: RE: Setting up Firehol-Tinyproxy-Dansguardian

Found most of the answer!!!! Lachen

I installed firehol, tinyproxy, and dansguardian. I then downloaded install_dansguardian_gui.tar.gz from an ubuntu website (hold on I KNOW not to use ubuntu packages or scripts), and extracted the firehol.conf,tinyproxy.conf, and dansguardian.conf files, restarted firehol, tinyproxy, and dansguardian (in that order) and the internet works just like it is supposed to. Now for a new posting, how do I get samba working?