webproxy: T563: add squidguard body

2 files changed, 27 insertions, 0 deletions

diff --git a/data/templates/squid/squid.conf.tmpl b/data/templates/squid/squid.conf.tmpl
index 814f94aa7..8754e762d 100644
--- a/data/templates/squid/squid.conf.tmpl
+++ b/data/templates/squid/squid.conf.tmpl
@@ -98,6 +98,15 @@ http_port 127.0.0.1:{{ default_port }}
 {# NOT insert the client address in X-Forwarded-For header #}
 forwarded_for off
 
+{# SquidGuard #}
+{% if url_filtering is defined and url_filtering.disable is not defined %}
+{%   if url_filtering.squidguard is defined and url_filtering.squidguard is not none %}
+redirect_program /usr/bin/squidGuard -c {{ squidguard_conf }}
+redirect_children 8
+redirector_bypass on
+{%   endif %}
+{% endif %}
+
 {% if cache_peer is defined and cache_peer is not none %}
 {%   for peer, config in cache_peer.items() %}
 cache_peer {{ config.address }} {{ config.type }} {{ config.http_port }} {{ config.icp_port }} {{ config.options }}
diff --git a/data/templates/squid/squidGuard.conf.tmpl b/data/templates/squid/squidGuard.conf.tmpl
new file mode 100644
index 000000000..907043614
--- /dev/null
+++ b/data/templates/squid/squidGuard.conf.tmpl
@@ -0,0 +1,18 @@
+### generated by service_webproxy.py ###

+{% if url_filtering is defined and url_filtering.disable is not defined %}

+{%   if url_filtering.squidguard is defined and url_filtering.squidguard is not none %}

+dbhome /opt/vyatta/etc/config/url-filtering/squidguard/db

+logdir /var/log/squid

+

+rewrite safesearch {

+        s@(.*\.google\..*/(custom|search|images|groups|news)?.*q=.*)@\1\&safe=active@i

+        s@(.*\..*/yandsearch?.*text=.*)@\1\&fyandex=1@i

+        s@(.*\.yahoo\..*/search.*p=.*)@\1\&vm=r@i

+        s@(.*\.live\..*/.*q=.*)@\1\&adlt=strict@i

+        s@(.*\.msn\..*/.*q=.*)@\1\&adlt=strict@i

+        s@(.*\.bing\..*/search.*q=.*)@\1\&adlt=strict@i

+        log     rewrite.log

+}

+

+{%   endif %}

+{% endif %}