Bonjour à tous,

Je rencontre actuellement un problème sur la conf de SquidGuard.
Je souhaiterai mettre en place un accès à seulement certains site pour certaines personnes.

Voici mon fichier conf :

[code]#

CONFIG FILE FOR SQUIDGUARD

Caution: do NOT use comments inside { }

dbhome /var/lib/squidguard/db
logdir /var/log/squidguard

TIME RULES:

abbrev for weekdays:

s = sun, m = mon, t =tue, w = wed, h = thu, f = fri, a = sat

time workhours {
weekly mtwhf 09:00 - 12:00
weekly mtwhf 14:00 - 18:00
}

time afterwork {
weekly mtwhf 00:00 - 09:00
weekly mtwhf 12:00 - 14:00
weekly mtwhf 18:00 - 24:00
weekly sa 00:00 - 24:00
}

SOURCE ADDRESSES:

src superusers {
userlist superusers.user
iplist superusers.ip
}

src vm {
userlist vm.user
}

src ta {
userlist ta.user
}

src eglabo {
userlist eglabo.user
}

src marketing {
userlist marketing.user
}

src accueil {
userlist accueil.user
}

src users {
iplist users.ip
}

DESTINATION CLASSES:

dest adult {
domainlist adult/domains
urllist adult/urls

expressionlist adult/very_restrictive_expression

}
dest publicite {
domainlist publicite/domains
urllist publicite/urls
}
dest porn {
domainlist porn/domains
urllist porn/urls

expressionlist porn/very_restrictive_expression

}
dest drogues {
domainlist drugs/domains
urllist drugs/urls
}
dest agressif {
domainlist agressif/domains
urllist agressif/urls
}
dest phishing {
urllist phishing/urls
domainlist phishing/domains
}
dest marchands_de_guerre {
urllist marketingware/urls
domainlist marketingware/domains
}
dest warez {
domainlist warez/domains
urllist warez/urls
}
dest games {
domainlist games/domains
urllist games/urls
}
dest proxy {
domainlist proxy/domains
urllist proxy/urls
}
dest radio {
domainlist radio/domains
urllist radio/urls
}
dest sports {
domainlist sports/domains
}
dest audio-video {
domainlist audio-video/domains
urllist audio-video/urls
}
dest social_networks {
domainlist social_networks/domains
urllist social_networks/urls
}
dest celebrity {
domainlist celebrity/domains
urllist celebrity/urls
}
dest chat {
domainlist chat/domains
urllist chat/urls
}
dest dating {
domainlist dating/domains
urllist dating/urls
}
dest noir {
domainlist noir/domains
}
dest liste_blanche {
domainlist liste_blanche/domains
}
dest liste_vm {
domainlist vm/domains
}
dest liste_ta {
domainlist ta/domains
}
dest liste_eglabo {
domainlist eglabo/domains
}
dest liste_admins {
domainlist adminsdm/domains
}
dest liste_accueil {
domainlist accueil/domains
}

###Forcer la réécriture de https vers http pour les moteurs de recherche et pouvoir analyser les mots
rew safesearch {
s@(google…/search?.q=.)@ &safe=active@i
s@(google…/images.q=.)@ &safe=active@i
s@(google…/groups.q=.)@ &safe=active@i
s@(google…/news.q=.)@ &safe=active@i
s@(yandex…/yandsearch?.text=.)@ &fyandex=1@i
s@(search.yahoo…/search.p=.)@ &vm=r&v=1@i
s@(search.live…/.q=.)@ &adlt=strict@i
s@(search.msn…/.q=.)@ &adlt=strict@i
s@(.bing…*/.q=.)@ &adlt=strict@i
log block.log
}

ACL RULES:

acl {
superusers {
pass all
}
vm {
pass liste_vm none
redirect http://127.0.0.1/cgi-bin/squidGuard2.cgi?clientaddr=%a&clientident=%i&url=%u
}
ta {
pass liste_ta none
redirect http://127.0.0.1/cgi-bin/squidGuard2.cgi?clientaddr=%a&clientident=%i&url=%u
}
eglabo within afterwork {
pass !adult !porn !drogues !agressif !phishing !marchands_de_guerre !warez !noir all
redirect http://127.0.0.1/cgi-bin/squidGuard2.cgi?clientaddr=%a&clientident=%i&url=%u
}
else {
pass liste_eglabo none
redirect http://127.0.0.1/cgi-bin/squidGuard2.cgi?clientaddr=%a&clientident=%i&url=%u
}
marketing within afterwork {
pass !adult !porn !drogues !agressif !phishing !marchands_de_guerre !warez !noir all
redirect http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&clientname=%n&clientident=%i&srcclass=%s&targetclass=%t&url=%u
}
else {
pass !adult !porn !drogues !agressif !phishing !marchands_de_guerre !warez !celebrity !chat !dating !noir !games !proxy !radio !sports all
redirect http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&clientname=%n&clientident=%i&srcclass=%s&targetclass=%t&url=%u
}
accueil within afterwork {
pass !adult !porn !drogues !agressif !phishing !marchands_de_guerre !warez !noir all
redirect http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&clientname=%n&clientident=%i&srcclass=%s&targetclass=%t&url=%u
}
else {
pass liste_accueil !adult !porn !drogues !agressif !phishing !marchands_de_guerre !warez !celebrity !chat !dating !noir !games !proxy !radio !sports none
redirect http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&clientname=%n&clientident=%i&srcclass=%s&targetclass=%t&url=%u
}
users within afterwork {
pass !adult !publicite !porn !drogues !agressif !phishing !marchands_de_guerre !warez !noir all
redirect http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&clientname=%n&clientident=%i&srcclass=%s&targetclass=%t&url=%u
}
else {
pass !adult !publicite !porn !drogues !agressif !phishing !marchands_de_guerre !warez !celebrity !chat !dating !noir !games !proxy !radio !sports !audio-video !social_networks all
redirect http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&clientname=%n&clientident=%i&srcclass=%s&targetclass=%t&url=%u
}
default {
pass none
redirect http://127.0.0.1/block.html
}
}
[/code]

Le soucis que je rencontre est que ce filtrage ne fonctionne pas. Si je me rajoute dans le groupe eglabo je n’accès à rien tout est bloqué comme ci qu’il ne lisait pas ma liste de domaine attribué.

J’ai beau chercher je ne trouve pas d’ou peut venir mon erreur.
Si quelqu’un à une piste je suis preneur