you wil definitely find answers to commercial antivirus products to run on FreeBSD/UNIX/Linux.

Huh, I had no idea.  You learn something new every day.

No it's not. If you're using a high end firewall with enough power, it will run.

I would rather not have some PC-class desktop as my firewall just so I can scan for viruses and malware that I don't have.  Most of my clients are Android, Apple and Linux.  The Windows boxes have their local AV clients.  I tried ClamAV a few years ago and it was dreadfully slow.  I agree with you when it generally comes to layered security, but AV on the firewall is too much of a performance tradeoff for me.

As I like to explain, from my own viewpoint, WPAD is the very last step in term of configuration.

you have to ensure that your proxy works when explicitly configured on your browser once this works, you deploy proxy.pac on some web server and ensure it works when manually configured browser side once and only once this works too, you can push WPAD using DNS, DHCP or whatever supported method.

Following this approach, you may discover that WPAD step is the easiest one and most of the time, it works  ;)

@dilu1:

In Sophos i use an option to block websites (facebook, twitter), this works for http and https.
https is configured as "URL filtering only", this has some disadvantages like no content or virus scanning on https sites but that doesn’t matter to much for this case,
I am only interested in blocking websites which works.

I'm very prone to learn how this would work  8)

Clearing the cache manually might have done the same thing for you.

squidGuard has one master config file that holds everything, so your Linux config should be pretty easy to read and reproduce in pfSense.  Linux config is probably in /etc/squidguard/squidguard.conf.

I don't know for sure, but I do know that transparent mode is more trouble than its worth.

Auto detect is enabled, but if I block those ports do I block them on the subinterface?
Because when I do nothing works I can't browse only ping…

EDIT: I got it working! It's logging everything - I'm not sure yet why but I'll check tomorrow and write back! Thanks again

Hi,
look here
https://forum.pfsense.org/index.php?topic=108370.msg617570#msg617570

Hello,

thanks for reply.

Whitelist = I dont know where this option is
Blacklist = I dont know where this option is
blk_BL_adv: Deny = thrue
default access all: allow = thrue
Do not allow IP-addresses in URL: unticked = false –> Why not ticked?
Proxy denied error: blank (you can insert a warning string here) = false –> we have a extern url
Redirect mode: int error page = false –> we have a extern url
redirect info: blank = false –> we have a extern url
Use safeguard engine: unticked = false –> why?
Rewrite: none = thrue
Log: ticked = thrue

squid-conf-1.PNG
squid-conf-1.PNG_thumb
squid-conf-2.PNG
squid-conf-2.PNG_thumb
squid-conf-3.PNG
squid-conf-3.PNG_thumb

@u3c307:

squidguard_configurator.inc must contains after require section [ln 53..]:

/* Allow additional execution time 0 = no limit. */
ini_set('max_execution_time', '3600');
ini_set('max_input_time', '3600');

ini_set('memory_limit', '50M');

Locate file under /usr/local/pkg

Thank you for the reply and detailed direction on what to review for the future! Unfortunately, I do not have the ability to share whether or not these directions would have solved the problem because I rebuilt the router after being unable to find an answer online.

Since I had a VERY brand new installation, I didn't lose much except for time in the rebuild. Even though I had to re-install the OS and get everything re-installed and configured, I'm happy for the experience and thus far the community cooperation and support.

Thanks again - and I'll keep this saved in the event this happens again as I continue to refine my pfSense configuration.

Additionally, for those that are curious - these are the default settings I found in the configuration file. Maybe I would need to bump up the amount to "200M" if this error comes up again?

Allow additional execution time 0 = no limit –----------------------------------------------------------------------

ini_set('max_execution_time', '3600');
ini_set('max_input_time',    '3600');
ini_set('memory_limit',      '100M');

Have you made sure that the pid for squid is down when your cron job run? Possible that the pid is still up that is why it is saying squid already exist.

Please see: https://forum.pfsense.org/index.php?topic=119934.0

Ok it means i need to get this SquidVideoBooster plug-in, for caching youtube videos and extras. it will cost $1000 per year for this. Not 100% open source smellin ios/mac  ;)

Hello guys,
I am Brazilian and I am with this same problem, I am wanting to block this automatic download of Windows Update, and here I have some O.S Win7 and Win10, and wanted to make this block via squid. Could anyone help? Thanks for help.

There seems to be a problem with Yahoo sites - see http://lists.squid-cache.org/pipermail/squid-users/2016-June/011220.html (it is about flickr but the issues on all sites of yahoo)

Problem seams to be solved! I'll test with SquidGuard, but so far so good!

Thank You KOM