From owner-freebsd-questions@FreeBSD.ORG  Fri Jul  6 11:38:48 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 7A93116A400
	for <freebsd-questions@freebsd.org>;
	Fri,  6 Jul 2007 11:38:48 +0000 (UTC)
	(envelope-from zbigniew@szalbot.homedns.org)
Received: from szalbot.homedns.org (lists.lc-words.com [83.19.156.210])
	by mx1.freebsd.org (Postfix) with ESMTP id 2A48A13C4B0
	for <freebsd-questions@freebsd.org>;
	Fri,  6 Jul 2007 11:38:48 +0000 (UTC)
	(envelope-from zbigniew@szalbot.homedns.org)
Received: from localhost ([127.0.0.1] helo=szalbot.homedns.org)
	by szalbot.homedns.org with esmtpa (Exim 4.67 (FreeBSD))
	(envelope-from <zbigniew@szalbot.homedns.org>) id 1I6lr5-0003ah-8e
	for freebsd-questions@freebsd.org; Fri, 06 Jul 2007 13:20:07 +0200
MIME-Version: 1.0
Date: Fri, 6 Jul 2007 13:20:07 +0200
From: Zbigniew Szalbot <zbigniew@szalbot.homedns.org>
To: freebsd-questions@freebsd.org
Message-ID: <28511e606938ca3af6624a90fa5798e9@szalbot.homedns.org>
X-Sender: zbigniew@szalbot.homedns.org
User-Agent: RoundCube Webmail/0.1b
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 8bit
Subject: parental control with squid and dansguardian
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Jul 2007 11:38:48 -0000

hi,

Thank you all for your comments re FreeBSD as a parental control and
gateway server. I have both squid and dansguardian working and I am left
with configuring them to optimize web browsing and the desired level of
control.

I do not yet have FreeBSD functioning as a real gateway as I will be able
to do it at a later stage. However, there is one thing that leaves me
wondering. In order to use the content filtering as provided by
Dansguardian, I need to configure the browser to look for proxy on port
8080. Now, if someone just changes the port in their browser to 3128 (squid
proxy port), then all content filtering will be bypassed. 

What do I need to do in order to avoid someone escaping the control? I am
also wondering how I should bring pf into the picture? I haven't tried yet
as the box is behind a router firewall anyway but I would appreciate your
comments how to marry squid & dansguardian with pf.

Thank you very much in advance!

Warm regards from otherwise cold and rainy Poland,

Zbigniew Szalbot