Cache&#x2F;Proxy

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you may not be able to execute some actions.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Cache/Proxy

I

Squid
• Impatient

2

0
Votes

2
Posts

131
Views

I odn't think so. pfSense squid has no definition for snmp_port that I could find. Nothing in the GUI either, so it may not support SNMP at all.
C

Can't access exchange services. TCP-DENIED/403 for OWA
• cyrcocq

2

0
Votes

2
Posts

131
Views

C

Hi, Finnaly I've got it. Squid/pfsense takes the "External FQDN" for exchange URL publication!!!
H

cannot implement squid + pfsense + active directory
• HelpUser

7

0
Votes

7
Posts

331
Views

@helpuser copy your keytab file as: /etc/krb5.keytab chown :proxy /etc/krb5.keytab chmod 0750 /etc/krb5.keytab squid.conf : auth_param negotiate program /libexec/squid/negotiate_wrapper_auth --ntlm /libexec/squid/ntlm_auth mydomain.ru --helper-protocol=squid-2.5-ntlmssp --kerberos /libexec/squid/negotiate_kerberos_auth -s GSS_C_NO_NAME Refer below link : https://wiki.squid-cache.org/ConfigExamples/Authenticate/WindowsActiveDirectory
M

Squid proxy - speedtest - latency error - slow internet when proxy settings enabled
• MR. Newbie

7

0
Votes

7
Posts

542
Views

M

@mr-newbie By the way, I have installed squid, squid proxy and light squid. I also configured LDAP for my Active Directory users so the transparent proxy was not enabled. Thanks for your suggestion. :)
S

ICAP protocol error.
• sisko212

4

0
Votes

4
Posts

205
Views

I

From my understanding memory cache amount is the minimum squid will use for cache plus you also have to allow for antivirus scan's, in transit object's, etc. For instance on my home network I use 1024mb and 256kb and when I check System Activity squid is using 2646mb. and Clam is using another 948mb.plus you have to provide memory for any other package's you install and the firewall itself.
L

HAProxy config fails to operate properly after 2.4.4 upgrade
• Leon Straathof

9

0
Votes

9
Posts

205
Views

L

@piba I might try creating a lua script in the future, i guess i start reading about the inner working of Remote Desktop Gateway or try a attempt to decompile some MS binaries :-) to get a idea what they are doing. Thanks for the help so far.
P

HAProxy 0.59_14: unable to add errorfile to backend
• PetrH

4

0
Votes

4
Posts

113
Views

P

Yes I can confirm it works after applying that patch.
J

HAProxy internal DNS resolution issue on backend servers
• JeFizz

3

0
Votes

3
Posts

125
Views

J

@PiBa Once I made that setting change and turned the HTTP monitoring back on it started working. Thanks!!
M

Authenticating Squid against MS NPS
• Michael

2

0
Votes

2
Posts

76
Views

M

Update: PAP does work but it's insecure - is there any other options?
X

Squid and Squidguard remove each other self
• xdom

2

0
Votes

2
Posts

116
Views

2.4.5 uses a newer copy of the ports tree where www/squid has changed to squid 4, but the package code is still only for squid 3. We fixed the dependency on the squid package to use www/squid3, but squidGuard is still looking for squid 4.x. We'll get that fixed shortly.
B

WOL and reverse proxy
• border

2

0
Votes

2
Posts

79
Views

Z

WOL magic packet is a broadcast packet. As far as I know there are no ways to broadcast to passthrough different IP-networks. And Pfsense has nothing to do with it. You can definitely use WOL from inside your local network. So, preliminarily, you need any VPN connection to any device/pc/server inside and send a WOL from it.
B

ssL_ERROR_RX_RECORD_TOO_LONG
• bodat

2

0
Votes

2
Posts

123
Views

Z

Have the same issue from the first time i'd tried to configure an SSL interseption (about half a year ago). I've made all possible with no result. Therefore was forced to use ipcad for logging and pass users just through firewall rules. The only idea I have is that this might have something connected with ISP. e.g. what if your ISP use SSL interception too? Then, I guess, "double interception" wouldn't work smoothly.
A

Problem with Squid + HTTPS/SSL interception consuming all memory
squid pfsense firewal squidguard https ssl squid • • alesilvam

7

0
Votes

7
Posts

457
Views

G

@atom1983 lets pray togther
J

Squid NTLM not available after update
• jayden

5

0
Votes

5
Posts

144
Views

Are you sure it said NTLM there and not NT Domain? NTLM has been gone for so long I can't even find a record in git of when it was removed. NT Domain auth has been gone since 2016, it apparently never worked on 2.3 and later. So you must have been coming from an extremely outdated version.
I

configuration of the squidguard groups
• iamjaime85

1

0
Votes

1
Posts

51
Views

No one has replied
C

Problems using HAproxy with postfix
• credulous

3

0
Votes

3
Posts

63
Views

C

Damn .. I didn't spot they were milliseconds .. though I was OK on frontend !! Thanks for the help .. dropped to default, and bingo!
K

How to add 'http-check expect' to HAproxy config in pfSense
• KennyMacCormik

2

0
Votes

2
Posts

89
Views

P

@kennymaccormik Add it to the advanced text box..
D

(54) Connection reset by peer (TLS code: SQUID_ERR_SSL_HANDSHAKE)
• DimmKo

1

0
Votes

1
Posts

98
Views

No one has replied
E

Squid blocked page with ssl error
• emammadov

10

0
Votes

10
Posts

405
Views

@emammadov https://forum.netgate.com/topic/24436/custom-squidguard-error-pages-how-to/9 https://forum.netgate.com/topic/69306/custom-squidguard-error-how-to
G

RDP/SSH disconnection with squid + icmp passthrough issue
• genseb

3

0
Votes

3
Posts

206
Views

G

Hi, It seems that issue was that we use only 1 NIC (as WAN) Since we've installed a second NIC and defined 1 NIC as WAN and the second as LAN, everything works well! Seb
K

Squid issues with rule names
• KennyMacCormik

1

0
Votes

1
Posts

72
Views

No one has replied
G

Squid: don't want to log some url
• genseb

1

0
Votes

1
Posts

71
Views

No one has replied
V

(SOLVED) HAProxy Block traffic from WAN and forward client IP
haproxy • • varazir

2

0
Votes

2
Posts

185
Views

V

Added a custom ACL and used this https://stackoverflow.com/questions/23342036/haproxy-restrict-single-backend-by-ip-range
V

(Solved) HAProxy "routing" problem
haproxy • • varazir

3

0
Votes

3
Posts

219
Views

V

I moved the galaxy backend to the ssl offload fronted.
W

Squidguard Filter: Allow only certain IPs without disabling "Do not allow IP-Addresses in URL"
• Warudo

1

0
Votes

1
Posts

88
Views

No one has replied
C

haproxy equivalent to proxy_redirect from nginx
• cc75

1

0
Votes

1
Posts

87
Views

No one has replied
W

how to log port 8080 on squid access.log
• waldopulanco

1

0
Votes

1
Posts

85
Views

No one has replied
W

(SOLVED) How to show full url in squid 3.5
• waldopulanco

1

1
Votes

1
Posts

133
Views

No one has replied
L

HAProxy http2 on pfSense 2.3.4
• lorelore75

7

0
Votes

7
Posts

266
Views

P

@lorelore75 You can install it while running, though it might cause a interruption regarding the handling of requests, and do check the new version is running after installing. Haproxy-devel replaces haproxy, and uses the same configuration settings so 'upgrade' should be pretty much seamless. Going back to 'haproxy' package should also be possible but sometimes 'upgraded' settings don't take effect in the older version.. So careful a quick comparison of the expected haproxy.cfg is wise to do :), but i guess thats also true when performing upgrades :)
T

Squid & Firewall Rules
• tscheese

6

0
Votes

6
Posts

361
Views

T

@jimp Thank you very much for your reply! This solved my problem. I suppose I could have worded my previous comment a little differently. I've found lots of others online who are having a similar troubles. As such, I wasn't so much surprised that nobody else was having the same issue, rather, I was surprised that I hadn't yet found an answer similar to what you've provided, above. Thanks again for your help with this!
S

Gateway issue
• selvakumar2k

3

0
Votes

3
Posts

97
Views

S

How to configure
A

Clamd Stopping - Kernel (clamd) exited on Signal 10
• andcza

6

0
Votes

6
Posts

374
Views

You should now see squid pkg version 0.4.44_7 which includes the recompiled clamav package.
K

HAproxy for Letencrypt?
• killmasta93

6

0
Votes

6
Posts

200
Views

M

Nope, I have never seen that error message before but it seems to be related to the backend. Can you post a picture of how your backend is configured
V

Setting reversed proxy
proxy haproxy • • varazir

39

0
Votes

39
Posts

652
Views

V

@jimp could you point me in the right direction how to setup so HAProxy on pfSense handels the certs ( not just getting them )
B

Content filter
• binkec

1

0
Votes

1
Posts

118
Views

No one has replied
W

HAProxy Down with HTTP site [ 503 Service Unavailable ]
• wesleylc1

9

0
Votes

9
Posts

259
Views

W

@piba How do I get information about this image?
P

PFsense transparent proxy speed issues
• ppickup

9

0
Votes

9
Posts

256
Views

I

Is Squid the only package on the pfSense box? Also I would check if the firewall rule that Squid adds in transparent mode is conflicting with other firewall rule's. With that amount of user's there is quite a lot of tuning that can be done.
D

Blocking Sites for some IP's but not others SQUID guard
• dannyr1992

4

0
Votes

4
Posts

128
Views

Common is literally applied for everyone. Group policies are only for those clients inside the group. The order is important. Did you confirm that your clients are even using the proxy?
W

Solved: How to cache musics from music site
• waldopulanco

1

0
Votes

1
Posts

128
Views

No one has replied
K

HAproxy backend whitelisting
haproxy whitelist blacklist • • keystroke

9

0
Votes

9
Posts

403
Views

K

That was it, thank you for your help!

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

2 / 59

Squid • Impatient

Can't access exchange services. TCP-DENIED/403 for OWA • cyrcocq

cannot implement squid + pfsense + active directory • HelpUser

Squid proxy - speedtest - latency error - slow internet when proxy settings enabled • MR. Newbie

ICAP protocol error. • sisko212

HAProxy config fails to operate properly after 2.4.4 upgrade • Leon Straathof

HAProxy 0.59_14: unable to add errorfile to backend • PetrH

HAProxy internal DNS resolution issue on backend servers • JeFizz

Authenticating Squid against MS NPS • Michael

Squid and Squidguard remove each other self • xdom

WOL and reverse proxy • border

ssL_ERROR_RX_RECORD_TOO_LONG • bodat

Problem with Squid + HTTPS/SSL interception consuming all memory squid pfsense firewal squidguard https ssl squid • • alesilvam

Squid NTLM not available after update • jayden

configuration of the squidguard groups • iamjaime85

Problems using HAproxy with postfix • credulous

How to add 'http-check expect' to HAproxy config in pfSense • KennyMacCormik

(54) Connection reset by peer (TLS code: SQUID_ERR_SSL_HANDSHAKE) • DimmKo

Squid blocked page with ssl error • emammadov

RDP/SSH disconnection with squid + icmp passthrough issue • genseb

Squid issues with rule names • KennyMacCormik

Squid: don't want to log some url • genseb

(SOLVED) HAProxy Block traffic from WAN and forward client IP haproxy • • varazir

(Solved) HAProxy "routing" problem haproxy • • varazir

Squidguard Filter: Allow only certain IPs without disabling "Do not allow IP-Addresses in URL" • Warudo

haproxy equivalent to proxy_redirect from nginx • cc75

how to log port 8080 on squid access.log • waldopulanco

(SOLVED) How to show full url in squid 3.5 • waldopulanco

HAProxy http2 on pfSense 2.3.4 • lorelore75

Squid & Firewall Rules • tscheese

Gateway issue • selvakumar2k

Clamd Stopping - Kernel (clamd) exited on Signal 10 • andcza

HAproxy for Letencrypt? • killmasta93

Setting reversed proxy proxy haproxy • • varazir

Content filter • binkec

HAProxy Down with HTTP site [ 503 Service Unavailable ] • wesleylc1

PFsense transparent proxy speed issues • ppickup

Blocking Sites for some IP's but not others SQUID guard • dannyr1992

Solved: How to cache musics from music site • waldopulanco

HAproxy backend whitelisting haproxy whitelist blacklist • • keystroke

Products

Applications

Support

Services

News

Resources

Company

Our Mission

Subscribe to our Newsletter

Squid
• Impatient

Can't access exchange services. TCP-DENIED/403 for OWA
• cyrcocq

cannot implement squid + pfsense + active directory
• HelpUser

Squid proxy - speedtest - latency error - slow internet when proxy settings enabled
• MR. Newbie

ICAP protocol error.
• sisko212

HAProxy config fails to operate properly after 2.4.4 upgrade
• Leon Straathof

HAProxy 0.59_14: unable to add errorfile to backend
• PetrH

HAProxy internal DNS resolution issue on backend servers
• JeFizz

Authenticating Squid against MS NPS
• Michael

Squid and Squidguard remove each other self
• xdom

WOL and reverse proxy
• border

ssL_ERROR_RX_RECORD_TOO_LONG
• bodat

Problem with Squid + HTTPS/SSL interception consuming all memory
squid pfsense firewal squidguard https ssl squid • • alesilvam

Squid NTLM not available after update
• jayden

configuration of the squidguard groups
• iamjaime85

Problems using HAproxy with postfix
• credulous

How to add 'http-check expect' to HAproxy config in pfSense
• KennyMacCormik

(54) Connection reset by peer (TLS code: SQUID_ERR_SSL_HANDSHAKE)
• DimmKo

Squid blocked page with ssl error
• emammadov

RDP/SSH disconnection with squid + icmp passthrough issue
• genseb

Squid issues with rule names
• KennyMacCormik

Squid: don't want to log some url
• genseb

(SOLVED) HAProxy Block traffic from WAN and forward client IP
haproxy • • varazir

(Solved) HAProxy "routing" problem
haproxy • • varazir

Squidguard Filter: Allow only certain IPs without disabling "Do not allow IP-Addresses in URL"
• Warudo

haproxy equivalent to proxy_redirect from nginx
• cc75

how to log port 8080 on squid access.log
• waldopulanco

(SOLVED) How to show full url in squid 3.5
• waldopulanco

HAProxy http2 on pfSense 2.3.4
• lorelore75

Squid & Firewall Rules
• tscheese

Gateway issue
• selvakumar2k

Clamd Stopping - Kernel (clamd) exited on Signal 10
• andcza

HAproxy for Letencrypt?
• killmasta93

Setting reversed proxy
proxy haproxy • • varazir

Content filter
• binkec

HAProxy Down with HTTP site [ 503 Service Unavailable ]
• wesleylc1

PFsense transparent proxy speed issues
• ppickup

Blocking Sites for some IP's but not others SQUID guard
• dannyr1992

Solved: How to cache musics from music site
• waldopulanco

HAproxy backend whitelisting
haproxy whitelist blacklist • • keystroke