parental control with squid and dansguardian

Zbigniew Szalbot zbigniew at
Fri Jul 6 16:26:42 UTC 2007

Hi Daniel,

On Fri, 06 Jul 2007 17:20:50 +0100, Daniel Bye <dan at>
> You can use pf's redirection to catch all outbound traffic destined for
> port 80:
>   rdr on $int_if inet proto tcp from $internal_net to !<me> port www ->
> $proxy_host port $proxy_port
> Define the macros appropriately in /etc/pf.conf and you're away.
> <me> is a pf table that contains all the firewall machine's addresses:
>   table <me> persist { self }
> Any packets originating from your internal network, bound for port 80 on
> any host other than the firewall (you may need to fine tune this,
> depending on your needs), are redirected to the designated host/port. No
> need to set up per-client proxies as the firewall handles it
> transparently.

Great! Thank you so much! Now this should really speed me up nd it is
perfect solution as no client configuration is needed and no escaping
possible! Thanks again!

I really appreciate such a helpful community as is here! Hard to find these
days. Thank you!

Zbigniew Szalbot

More information about the freebsd-questions mailing list