WebFilter profile issue

NethServer Version: 7.7.1908

Hello Everyone, i’m testing the Trasparent Proxy with SSL feature of NS, everything seems fine, but i’m having some issue setting up the varius profiles.

So for testing purpose i’ve enabled shalla block categories and choose to block " porn " but it’s not working.

Under profile i’ve set a new profile with this parameters:

If i delete the profile, and add the blocked categories on the “default” profile, it work without issue, but i would like to just limit a specific interface / role.

What i’m missing ? what i did wrong ?

Default Profile:

Global Options

Here are my ufdbGuard conf and logs if it can help: https://pastebin.com/Uat6x42k

According to the logs, i’ve noticed there are some syntax error on the cfg from line 280 to 298:

280 src src_Block Porn {
281     ip
283 }
286 acl {
288     # Profile: Block Porn
289     src_Block Porn  {
290         pass !security !"porn"  all
291     }
293     default {
294         pass !security nh_whitelist  !nh_blacklist  !in-addr  all
295         redirect        &targetgroup=%t&url=%u
296     }
298 }

But i did not manually edit the file :thinking:

and also :

2020-01-30 13:11:55 [16225]     
2020-01-30 13:11:55 [16225] 
2020-01-30 13:11:55 [16225]    FATAL ERROR: "default" ACL is not defined  *****
2020-01-30 13:11:55 [16225]     

Any hint’s what could be causing this issue ?


Ok, i think i’ve got it @dev_team:

So basically the Web UI allow to add a Profile name with spaces, but if you do it, it will create a cfg with a wrong syntax.

Spaces should not be allowed on the Profile name

And now it’s working :wink:

1 Like

I think that the dev_team is no longer available until monday… so you have to be patient :smiley:

It’s fine :wink:

This is indeed a bug, thanks for reporting! We are going to open an issue for it.

Since you did a great analysis job, if you want, you can open an issue directly inside https://github.com/NethServer/dev/issues

/cc @davide_marini

Cool, bug filled on github here’s the link https://github.com/NethServer/dev/issues/6043 :wink: