sudo tail -n 20 -f /var/log/squid3/access.log | egrep TCP_DENIED
www\.jumpstation\.co\.uk
download\.windowsupdate\.com
\.microsoft\.com
.*\.bbci?\.co\.uk
.{3}\.gamib\..{3}
www\.friv\.com
www\.msftncsi\.com
funo\.com
textadventures\.co\.uk
www\.startssl\.com/sfsca\.crl
crl\.globalsign\.net/root\.crl
update\.videolan\.org
.*\.mathletics\.co\.uk
.*\.mathletics\.com\.?a?u?
.*\.mymaths\.co\.uk
.*\.3plearning\.com
www\.jumpstation\.co\.uk
download\.windowsupdate\.com
\.microsoft\.com
.*\.bbci?\.co\.uk
.{3}\.gamib\..{3}
www\.friv\.com
www\.msftncsi\.com
funo.com
textadventures.co.uk
www.startssl.com/sfsca.crl
crl.globalsign.net/root.crl
update.videolan.org
Generating /etc/default/isc-dhcp-server...
[....] Starting ISC DHCP server: dhcpd[....] check syslog for diagnost[FAIL... failed!
failed!
invoke-rc.d: initscript isc-dhcp-server, action "start" failed.
INTERFACES="eth0"
HOTPLUG_INTERFACES="eth0"
sudo apt-get install squid3 bridge-utils apache2 perl
nano iptables.sh
(you can also use vi like a real hacker!)
#!/bin/bash
iptables -t nat -A POSTROUTING -j MASQUERADE
iptables -I FORWARD -p TCP --dport 443 -j REJECT
iptables -A INPUT -p tcp --dport 443 -j DROP
iptables -A OUTPUT -p tcp --dport 443 -j DROP
iptables -t nat -A PREROUTING -i wlan0 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.42.1:3128
iptables -t nat -A PREROUTING -i eth1 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128
chmod +x iptables.sh
sudo cp iptables.sh /etc/init.d/
sudo update-rc.d iptables.sh start 99
auto lo
iface lo inet loopback
iface eth0 inet dhcp
allow-hotplug wlan0
iface wlan0 inet static
address 192.168.42.1
netmask 255.255.255.0
#up iptables-restore < /etc/iptables.ipv4.nat
echo www.jumpstation.co.uk >> /home/pi/allowed-sites.squid
acl GoodSites dstdomain "/home/pi/allowed-sites.squid"
http_access allow GoodSites
http_port 3128
http_port 3128 transparent
sudo tail -f /var/log/squid3/access.log | egrep DENIED
sudo service squid3 restart
acl permittedips src 192.168.42.10
http_access allow permittedips
sudo service squid3 restart
acl GoodSites dstdomain "/home/pi/allowed-sites.squid"
acl GoodSites url_regex -i "/home/pi/allowed-sites.squid"
bbci?\.co\.uk
email
root
flog archives
Disclaimer:
This page is by me for me, if you are not me then please be aware of the following
I am not responsible for anything that works or does not work including files and pages made available at www.jumpstation.co.uk
I am also not responsible for any information(or what you or others do with it) available at www.jumpstation.co.uk
In fact I'm not responsible for anything ever, so there!