You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Joshua Pickard
ce4838fa3b
|
4 months ago | |
|---|---|---|
| Dockerfile | 5 years ago | |
| LICENSE | 5 years ago | |
| README.md | 5 years ago | |
| errorpage.css | 5 years ago | |
| keywordblock.txt | 5 years ago | |
| squid.conf | 3 years ago | |
| whitelist.txt | 4 months ago | |
README.md
Docker Squid Proxy - Strict Whitelist
Docker Hub Repository
docker-compose
---
version: "3"
services:
squidproxy:
image: signaln9ne/squidproxy-strict-whitelist:latest
container_name: squidproxy
volumes:
- squid-proxy:/config
ports:
- 3128:3128
restart: unless-stopped
volumes:
squid-proxy:
Build the image
git clone https://git.laurelcountycorrections.org/jpickard/squid-whitelist.git
cd squid-whitelist
Edit /etc/squid/squid.conf, changing the values for:
acl localnet src 192.168.56.0/24 # Change to your own network
dns_nameservers 192.168.56.11 # DNS servers (change if you want)
and /etc/squid/whitelist.txt, adding or removing domains as you wish. Any domains in this list will be reachable, any that are not will be denied.
Once the container is running, you can edit these documents in /etc/squid as needed. whitelist.txt will need the most adjusting.
Run the container
sudo docker build -t signaln9nesquidproxy .
docker volume create squid
docker run -dit \
-p 3128:3128 \
--name=squidproxy \
--restart=always \
-v squid:/etc/squid \
signaln9nesquidproxy
Point your client machines to the container IP port 3128. Only approved domains in the whitelist.txt file should be accessible.
You can tail -f /var/log/squid/access.log to see what domains are being approved, denied, etc.