Have already done so...
[root@gateway ~]# config show squid
squid=service
EnforceSafePorts=no
RequireAuth=nsca
SafePorts=21,70,80,81,119,210,443,563,980,1024-65535
TCPPort=3128
TCPProxyPort=80:3128
Transparent=no
TransparentPort=8080
access=private
status=enabled
[root@gateway ~]# config show dansguardian
dansguardian=service
portblocking=yes
status=enabled
That is why I find it bizarre that they are able to access the web