@mark81: Hi, I have a working setup with squid3 & antivirus. When I enable ssl interception and restart my firewall squid3 doesn't start. If I disable ssl interception and restart all works well. I'm not sure how I can troubleshoot this. Hope somebody can help. Thanks! Same thing does not start when I enable ssl…...

Yeah, I should have mentioned checking squidguard's log much sooner than I did.

I want to use SSL Inspection of squid3 but without displaying errors and inconvenience to users. What should I do ? Anything ? Transparent proxy won't help you at all.  Run squid in explicit mode.  Configure WPAD to allow most OSes to find the proxy on their own.  Others will have to manually configure.

I changed some values in parameters.  Some fields were empty. Services -> haproxy -> settings I changed parameters in "stats tab" and "logging". It's running without glitches since I've done that, about 3 or 4 days ago. I don't know wich parameter does the thrick.  I don't know if it's for good.

https://forum.pfsense.org/index.php?topic=80410.0

Maybe, but now I have figured out that the issue I was dealing with had happened because of the limiter. I formatted for nothing but a clean and fresh install afterall. Atleast I learnt something.

Hi, I have exactly same problem. How fix it?

I have the same problem  :(

Install squidGuard.  Create 2 Target Categories, each with a Domain List containing the specific list of sites you want your groups to access.  Create separate ACLs for your 2 different groups of users.  Associate each ACL with the respective target category.  Set the Common ACL and your 2 custom ACL's default access to Deny, and make sure your target categories are listed above the Deny rule.  Don't forget that whenever you make a change to squidGuard, you must go back to the General Settings page and click Save then Apply or it won't work.  I just typed this of the top of my head so I may have forgotten a step or confused you with the order of operations.

Dear , I'm new to this, but fix this problem by simply checking the "Do not verify the remote certificate " located in Man SSL option menu in the filtering. SSL Man Int the Middle Filtering>Remote cert checks> check "Do not verify remote certificate".

I got it at 90% i think x) I've asked for help in the topic you give me i don't know if i'll get a response :x

Hello all, I've upgraded to the haproxy-devel, and i was able to translate my working config to pfsense webgui format. Thanks Nuno

squidGuard + Shallalist blacklist allows you to block most ads.  squidGuard also has a Clean advertising checkbox that replaces blocked ads with a blank image.