| [ Index ] |
PHP Cross Reference of Unnamed Project |
[Summary view] [Print] [Text view]
1 # 2 # CONFIG FILE FOR SQUIDGUARD 3 # généré par le paquet se3-internet à partir d'un fichier type LCS 4 # 5 # ATTENTION, ce fichier devra probablement être modifié à la main pour s'adapter à votre config 6 # et copié sur le proxy dans le répartoire /etc/squid 7 # 8 # ne pas oublier de reconstruire les bases : su proxy squidGuard -C all 9 # squid -k reconfigure 10 # 11 #$Id: squidGuard.conf 3280 2008-10-12 20:40:29Z dbo $# 12 13 dbhome /var/lib/squidguard/blacklists 14 logdir /var/log/squid 15 16 # 17 # TIME RULES: 18 # abbrev for weekdays: 19 # s = sun, m = mon, t =tue, w = wed, h = thu, f = fri, a = sat 20 # autant de plages que nécessaire peuvent être définies (cours1...coursn) 21 # si plus de 5, il faudra adapter la page /var/www/se3/se3-internet/connexions-individus.php 22 # il faudra également ajouter les src correspondant et les acls 23 # adapter les horaires ci-dessous au besoin 24 25 time cours1 { 26 weekly mtwhf 08:00 - 09:50 27 } 28 time cours2 { 29 weekly mtwhf 08:00 - 12:00 30 } 31 time cours3 { 32 weekly mtwhf 08:00 - 13:30 33 } 34 time cours4 { 35 weekly mtwhf 08:00 - 15:20 36 } 37 time cours5 { 38 weekly mtwhf 08:00 - 17:30 39 } 40 time soir { 41 weekly mtwhf 17:30 - 23:00 42 weekly * 06:00 - 08:00 43 weekly saturday 08:00 - 24:00 44 weekly sunday 08:00 - 23:00 45 } 46 time pause { 47 weekly mtwhf 09:50 - 10:10 48 weekly mtwhf 12:00 - 13:30 49 weekly mtwhf 15:20 - 15:40 50 weekly * 17:30 - 23:00 51 weekly * 06:00 - 08:00 52 weekly saturday 06:00 - 24:00 53 weekly sunday 06:00 - 23:00 54 } 55 56 57 # 58 # REWRITE RULES: 59 # 60 61 #rew dmz { 62 # s@://admin/@://admin.foo.bar.no/@i 63 # s@://foo.bar.no/@://www.foo.bar.no/@i 64 #} 65 66 # 67 # SOURCE ADDRESSES: 68 # 69 # liste permettant de conserver des postes ou sous réseau non soumis au contrôle 70 # 71 src surf-bypass { 72 # iplist ip_sources/surf-bypass 73 # ip 172.16.1.0/24 74 # ip 172.16.100.123 75 } 76 77 # ldap cache time in seconds 78 ldapcachetime 60 79 80 src internet { 81 # laisse passer tous les postes ayant les droits internet 82 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:interne*:tous)) 83 } 84 src internet-pause { 85 # laisse passer tous les postes internet-pause durant les pauses 86 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:internet-pause:*)) 87 } 88 src internet-cours { 89 # laisse passer tous les postes internet-cours sauf durant les pauses 90 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:internet-cours:*)) 91 } 92 src internet-soir { 93 # laisse passer tous les postes internet-soir le soir 94 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:internet-soir:*)) 95 } 96 97 src internet-cours1 { 98 # laisse passer tous les postes enregistrés pour le cours1 99 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:interne*:cours1)) 100 } 101 src internet-cours2 { 102 # laisse passer tous les postes enregistrés pour le cours2 103 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:interne*:cours2)) 104 } 105 src internet-cours3 { 106 # laisse passer tous les postes enregistrés pour le cours3 107 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:interne*:cours3)) 108 } 109 src internet-cours4 { 110 # laisse passer tous les postes enregistrés pour le cours4 111 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:interne*:cours4)) 112 } 113 src internet-cours5 { 114 # laisse passer tous les postes enregistrés pour le cours5 115 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:interne*:cours5)) 116 } 117 src intranet { 118 # filtre tous les postes ayant les droits intranet 119 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:intranet*)) 120 } 121 src aucun { 122 # filtre tous les postes ayant les droits aucun (punis ou non configurés) 123 ldapipsearch ldap://#LDAPIP#/#COMPUTERSRDN#,#BASEDN#?iphostnumber?sub?(&(&(objectclass=iphost)(iphostnumber=%s))(destinationIndicator=*:aucun:*)) 124 } 125 126 127 # utile dans le cas de l'utilisation d'un proxy ftp (frox) 128 129 src proxy-ftp { 130 ip #PROXYIP# 131 } 132 # 133 # DESTINATION CLASSES: 134 # 135 136 # Liste blanche de sites accessibles meme en cas de restrictions. 137 # très utile pour laisser des sites en accès libre (google, wikipedia,...) 138 139 dest whitelists { 140 # domainlist whitelists/domains 141 # urllist whitelists/urls 142 } 143 144 # liste issu de LCS 145 146 dest lcs { 147 domainlist lcs/domains 148 urllist lcs/urls 149 } 150 dest webmail { 151 domainlist webmail/domains 152 } 153 dest forums { 154 domainlist forums/domains 155 urllist forums/urls 156 } 157 158 dest ads { 159 domainlist ads/domains 160 urllist ads/urls 161 } 162 dest aggressive { 163 domainlist aggressive/domains 164 urllist aggressive/urls 165 } 166 dest audio-video { 167 domainlist audio-video/domains 168 urllist audio-video/urls 169 } 170 dest drugs { 171 domainlist drugs/domains 172 urllist drugs/urls 173 } 174 dest gambling { 175 domainlist gambling/domains 176 urllist gambling/urls 177 } 178 dest hacking { 179 domainlist hacking/domains 180 urllist hacking/urls 181 } 182 dest mail { 183 domainlist mail/domains 184 } 185 dest porn { 186 domainlist porn/domains 187 urllist porn/urls 188 } 189 dest proxy { 190 domainlist proxy/domains 191 urllist proxy/urls 192 } 193 dest violence { 194 domainlist violence/domains 195 urllist violence/urls 196 } 197 dest warez { 198 domainlist warez/domains 199 urllist warez/urls 200 } 201 202 203 acl { 204 surf-bypass { 205 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez 206 redirect #REDIRECT# 207 } 208 proxy-ftp { 209 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez 210 redirect #REDIRECT# 211 } 212 internet-pause within pause { 213 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez !in-addr 214 redirect #REDIRECT# 215 } 216 internet-soir within soir { 217 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez !in-addr 218 redirect #REDIRECT# 219 } 220 internet-cours within pause { 221 pass whitelists none 222 redirect #REDIRECT# 223 } else { 224 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez !in-addr 225 redirect #REDIRECT# 226 } 227 internet-cours1 within cours1 { 228 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez !in-addr 229 redirect #REDIRECT# 230 } else { 231 pass whitelists none 232 redirect #REDIRECT# 233 } 234 internet-cours2 within cours2 { 235 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez !in-addr 236 redirect #REDIRECT# 237 } else { 238 pass whitelists none 239 redirect #REDIRECT# 240 } 241 internet-cours3 within cours3 { 242 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez !in-addr 243 redirect #REDIRECT# 244 } else { 245 pass whitelists none 246 redirect #REDIRECT# 247 } 248 internet-cours4 within cours4 { 249 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez !in-addr 250 redirect #REDIRECT# 251 } else { 252 pass whitelists none 253 redirect #REDIRECT# 254 } 255 internet-cours5 within cours5 { 256 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez !in-addr 257 redirect #REDIRECT# 258 } else { 259 pass whitelists none 260 redirect #REDIRECT# 261 } 262 internet { 263 pass whitelists !lcs !ads !aggressive !audio-video !drugs !gambling !hacking !porn !violence !warez !in-addr 264 redirect #REDIRECT# 265 } 266 intranet { 267 pass whitelists none 268 redirect #REDIRECT# 269 } 270 aucun { 271 pass none 272 redirect #SE3#/se3-internet/charte_internet.php 273 } 274 default { 275 pass none 276 redirect #SE3#/se3-internet/connexions_portables.php 277 } 278 }
title
Description
Body
title
Description
Body
title
Description
Body
title
Body
| Generated: Tue Mar 17 22:47:18 2015 | Cross-referenced by PHPXref 0.7.1 |