(proxy) Add remoteblacklist to squid configuration

1836bc5a · Jos Schellevis · 21ba10e2 · 1836bc5a
Commit 1836bc5a authored Jul 02, 2015 by Jos Schellevis
Hide whitespace changes
Inline Side-by-side

Showing with 15 additions and 2 deletions

squid.conf src/opnsense/service/templates/OPNsense/Proxy/squid.conf +15 -2

No files found.
--- a/src/opnsense/service/templates/OPNsense/Proxy/squid.conf
+++ b/src/opnsense/service/templates/OPNsense/Proxy/squid.conf
@@ -105,7 +105,7 @@ acl whiteList url_regex {{element|replace(".","\.")}}
 {% endif %}
 {% if helpers.exists('OPNsense.proxy.forward.acl.blackList') %}
-# ALC - Blacklist - User defined (blackList)
+# ACL - Blacklist - User defined (blackList)
 {%  for element in OPNsense.proxy.forward.acl.blackList.split(",") %}
 {%      if '^' in element or '\\' in element or '$' in element or '[' in element %}
 acl blackList url_regex {{element}}
@@ -114,9 +114,18 @@ acl blackList url_regex {{element|replace(".","\.")}}
 {%      endif %}
 {%  endfor %}
 {% endif %}
-{% if helpers.exists('OPNsense.proxy.forward.acl.browser') %}
+# ACL - Remote fetched Blacklist (remoteblacklist)
+{% if helpers.exists('OPNsense.proxy.forward.acl.remoteACLs.blacklists') %}
+{%   for blacklist in helpers.toList('OPNsense.proxy.forward.acl.remoteACLs.blacklists.blacklist') %}
+{%      if blacklist.enabled=='1' %}
+acl remoteblacklist dstdom_regex "/usr/local/etc/squid/acl/{{blacklist.filename}}"
+{%      endif %}
+{%   endfor %}
+{% endif %}
 # ALC - Block browser/user-agent - User defined (browser)
+{% if helpers.exists('OPNsense.proxy.forward.acl.browser') %}
 {%  for element in OPNsense.proxy.forward.acl.browser.split(",") %}
 acl blockuseragents browser {{element}}
 {%  endfor %}
@@ -182,6 +191,10 @@ http_access allow whiteList
 #
 # ACL list (Deny) blacklist
 http_access deny blackList
+# ACL list (Deny) remoteblacklist
+http_access deny remoteblacklist
 {% endif %}
 {% if helpers.exists('OPNsense.proxy.forward.acl.browser') %}