Any advises?

could you check on squidguard then go to logs then to filter log what does it say? does it say squidguard ready for request or squidguard stopped and db update?

Ok after more fiddling I've make it work partially.

I am now using an app called ProxyDroid.
Added NAT to forward to my proxy server.

Added the mobile ip address in the ACL, however this is where I'm stuck since it is a dynamic ip how am I properly configure it?
Secondly whenever I browsing https site it failed so is there anyway to force the server only intercept port 80 and bypass the rest?

Thx in advance!

Are you trying to use WPAD?

Hi all, i fixed the issue, thanks all for your support.  ;D

Try more 5 click in 2 seconds, and download begin.

Solved!

Instead of blacklist it I bypass it, I create an Aliases, and monitor the ips going thru my proxy under Real Time tab, then I added those ips.

Cheers!

Addendum:

There are no error messages in the cache logs. All I see are the startup and shutdown entries:

22.04.2016 09:44:50 Shutdown: Basic authentication.
22.04.2016 09:44:50 Shutdown: Digest authentication.
22.04.2016 09:44:50 Shutdown: Negotiate authentication.
22.04.2016 09:44:50 Shutdown: NTLM authentication.
22.04.2016 07:50:56 Service Name: squid
22.04.2016 07:50:56 Starting Squid Cache version 3.5.16 for amd64-portbld-freebsd10.3…

For the moment I have disabled Squid3

I didn't get you there.. What I'm trying to say is if I can somehow use the Groups in pfSense's User Manager in the Groups ACL section in SquidGuard

@cjbujold

Recently I've been trying pfSense for publishing and caching web servers; I was doing well with Varnish.
Pitifully, with the recent 2.3 upgrade this package is no longer available. So I tried Squid.

@cjbujold:

Went to the PFsense Advanced/ Tunables setting and create a new value for "portrange.reservedhigh with a value of 0.

Tried starting Reverse Squid and now I receive the error:

[ Squid is disabled. You must enable Squid proxy under Services - Squid Proxy Server - General.]

I do not want to use squid just the reverse proxy part.  The tutorials does not say we need to start this service.

Next step is I tried starting the Squid 3 service and now I'm getting the following error:

php-fpm[6517]: /pkg_edit.php: The command '/usr/pbi/squid-amd64/sbin/squid -f /usr/pbi/squid-amd64/local/etc/squid/squid.conf' returned exit code '1', the output was '2016/04/01 10:11:44| FATAL: Invalid ACL type 'Help' FATAL: Bungled /usr/pbi/squid-amd64/local/etc/squid/squid.conf line 97: acl rvm_Remote Help url_regex -i remotehelp.accra.ca Squid Cache (Version 3.4.10): Terminated abnormally. CPU Usage: 0.011 seconds = 0.011 user + 0.000 sys Maximum Resident Size: 38032 KB Page faults with physical i/o: 0'

Instead of "portrange.reservedhigh" you have to set "net.inet.ip.portrange.reservedhigh" with the same value of "0".

After that you'll be able to configure "Reverse HTTP Port" (on "Squid Reverse HTTP Settings") to listen on port 80.

Then, you must enable Squid proxy under Services -> Squid Proxy Server -> General. Obviously you don't want to enable it as a Proxy Server but as a Reverse Proxy Server, aparently both use the same process, so you have to.

When you try to do this, it'll ask you to configure the "Local Cache", go to that tab, set your options, save the changes, and then try to "Enable Squid proxy" and save the changes.

You could verify if the "Squid" process is running on Status -> Services. And doing some "nmap -v -p 80 10.0.0.1" (<– your public IP or DNS here!) to check that your pfSense firewall is listening on port 80.

A firewall Rule have to allow traffic on port 80 to your public IP/virtual IP/CARP address; it's not necessary to set a NAT rule on your firewall (as far as I know), so if the Squid service is runnning there shouldn't be a problem to listen on port 80.

so by that way squid guard will not allow any listed Ips/Host by pass in Squid ?

try to reboot the pfsense and make sure you enable squid and squid gurad

Chrome for android has been automaticly direct proxy system by google.  ;D