@jimp, thank you for fixing the problem that quick!

@moh10ly:

If not is it possible that it'll come on future versions of squid?  ???

thanks
Moh

Also in need of this feature.

Currently running pound on a separate VM but would like to have my reverse proxy on pfSense. I suppose I could always install pound on the pfsense box but it would be nice to be able to do multiple SSL reverse proxy configs it in the GUI.

I have received the access denied message in http access.

I too had this problem, in my case, I found /usr/local/libexec/lightsquid/ip2name.* non executable. chmod +x /usr/local/libexec/lightsquid/ip2name.* and force the update and everything is normal. I realize this doesn't help OP, but hope it may help someone else who looks at this thread.

hmm..allright lets start from the basic…

could you first try just one LAN segment to see if its working first?
Why dont you let WPAD run on pfSense? Did you add the 252 on the DHCP on windows server?

can you do nslookup WPAD? this is my WPAD

Also want to side note something about the VPN with OpenVPN theres issues see this...

https://forums.openvpn.net/topic21290.html

function FindProxyForURL(url, host) {     if (isPlainHostName(host) ||         shExpMatch(host, "*.local") ||         isInNet(dnsResolve(host), "192.168.3.0",  "255.255.255.0"))         return "DIRECT";     return "PROXY 192.168.3.254:3128"; }

Capture.PNG
Capture.PNG_thumb

Hi everybody,

I've a problem with  the captive portal authentication method for Squid.

When Squid authentification methode is "captive portal", my users can authenticate in my captive portal (captive portal with RADIUS AUTHENTIFICATION) but all the request in port 80 are blocked by the proxy. The Squid's logs (in Real TIme) say "TCP_DENIED/403" and the errors page with "access denied" appears…

When Squid authentification methode is "none", my users can authenticate in my captive portal and all the request in the port 80 are accept and the navigation is logged.

Please can you help me ?

I don't speak english very well, sorry... I'm french.

Thanks very much !

@pjust:

Hello,
I need to set up a user-agent to pfsense when HAproxy makes test.

Currently in the logs I find "undefined."

How can I do?

Hi guy,
on the server pool in the backend tab, you can specify the user agent in the "Http check version" for example "HTTP/1.1\r\nUser-agent:\ LB-Check"

After upgrading to PFSense 2.3 SQUID service doesn't start anymore.

I used this commands:

mv /var/squid/cache /var/squid/cache.old - SUCCESS

squid -z - ERROR

See attachment

rm -rf /var/squid/cache.old

Thank you in advance for your help.

Squid-z.jpg
Squid-z.jpg_thumb

Working after putting the ip in the exception list. thanks for your support

"lightsquid.cfg "change at line 17:

wrong path "/usr/pbi/lightsquid-amd64/www/lightsquid/tpl""
right path: "/usr/local/www/lightsquid/tpl"

now everything is working.

It might be that some change to the packages was in the devel or RELENG_2_3 branch of the package repo but not RELENG_2_3_0. Probably not a huge deal, eventually we'll get that all synced back up, we're still working things over post-release though.

Hi, I think I found the solution, just add the port in 'ACL SSLPorts' in 'ACLs under Proxy Server : Access Control, for me it worked for port 8443 and 2087

@killmasta93:

its a plugin of firefox called web of trust

Oh, ok. I searched with google, but there is too much World of Tanks with such kind of search request :)