@JonathanLee said in Squid Proxy, "No Such File Or Directory" Error:

https://redmine.pfsense.org/issues/14406

Please add your comments to it with a screenshot and logs.

Thanks will do :)

@periko I understand, for now I'm using squid alone just as a proxy to have access history

@1s440 can anyone please help me with his

@scott_solomon Like that? :
https://hochwald.net/user-authentication-with-haproxy-on-pfsense/

I don´t use it anymore, but that worked for me.

@angel701129 @PiBa

I ended up with a similar response after the 2.7 upgrade, it seems odd that this would be changed by the OS upgrade rather than a package change though. Did something change withing the 2.7 version that reverted how the HAProxy config gets written?

In my case specifically it listed '[ALERT] 190/122149 (58497) : parsing [/var/etc/haproxy_test/haproxy.cfg:520] : The 'rspirep' directive is not supported anymore since HAProxy 2.1. Use 'http-response replace-header' instead.'

@cfrudolphy That is how I have it set up and the config/setup is no different than any other frontend/backend pair. I happen to use a single front end using CNAME DNS pointing to a single DDNS URL on the front end, and then making sure I have unique IP/TCPs on the backend.

@jirobaye said in Add Intermediate an issued Certificate Server:

Digicert

What intermediate are you looking for?

https://www.digicert.com/kb/digicert-root-certificates.htm

DigiCert Customers: If you are looking for your certificate’s intermediate root, please download it from inside your DigiCert account or contact your account manager or DigiCert Support.

I solve it. (Somehow)
After switching back and forth the cert selection in the frontend, the proxy configuration in /var/etc/haproxy has been regenerated.
This time correctly with only two certificates.

Solved it. It's been more easy than I thought.

I created an Errorfile ("Files" section of HA-Proxy) with a redirect to an external "construction" page:

HTTP/1.0 302 Found
Cache-Control: no-cache
Location: https://constructionpage.example.com
Content-Type: text/html

!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Moved Temporarily</title>
</head><body>
<h1>Moved </h1>
<p>The document has moved <a href="https://constructionpage.example.com">here</a>.</p>
</body></html>
.
.. and assigned that one with Error 503
I did not run the final test on the live system, but in a test environment it worked.

@emefff Thanks a lot Mario

@johnpoz

hangs head

Thanks.

I skipped the step mentally on adding certs in the SSL Offloading section. I added it there, and no error.

Again, Thank you.

@pixel24 It has been 7 months since I replaced it. I didn't wait for an official release because I don't have fixed wanip and it changes quite often. You won't lose any setup in the process.

Not sure it is the proper thing do to but in the SSH windows, I went to :

/usr/local/etc/squid/errors

then issued "cp -Rp templates/ en/

It created the "/usr/local/etc/squid/errors/en" directory and copied all the files into it.

I restarted Squid.

The Real Time Squid Cache Table now shows:

Date-Time Message
28.06.2023 17:00:49 pinger: Initialising ICMP pinger ...
28.06.2023 17:00:49 Service Name: squid
28.06.2023 17:00:49 Starting Squid Cache version 5.8 for amd64-portbld-freebsd14.0...
28.06.2023 16:59:31 Creating missing swap directories
31.12.1969 19:00:00
31.12.1969 19:00:00
31.12.1969 19:00:00
28.06.2023 16:59:25 Shutdown: Basic authentication.
28.06.2023 16:59:25 Shutdown: Digest authentication.
28.06.2023 16:59:25 Shutdown: Negotiate authentication.
28.06.2023 16:59:25 Shutdown: NTLM authentication.

No errors such as what I was seeing before like this:

28.06.2023 15:05:10 Unable to load default error language files. Reset to backups.
28.06.2023 15:05:10 ERROR: loading file 9;/usr/local/etc/squid/errors/en/ERR_NO_RELAY';: (2) No such file or directory
28.06.2023 15:05:10 Unable to load default error language files. Reset to backups.
28.06.2023 15:05:10 ERROR: loading file 9;/usr/local/etc/squid/errors/en/ERR_FORWARDING_DENIED': (2) No such file or directory
28.06.2023 15:05:10 Unable to load default error language files. Reset to backups.
28.06.2023 15:05:10 ERROR: loading file 9;/usr/local/etc/squid/errors/en/ERR_CACHE_MGR_ACCESS_DENIED': (2) No such file or directory
28.06.2023 15:05:10 Unable to load default error language files. Reset to backups.
28.06.2023 15:05:10 ERROR: loading file 9;/usr/local/etc/squid/errors/en/ERR_CACHE_ACCESS_DENIED': (2) No such file or directory
28.06.2023 15:05:10 Unable to load default error language files. Reset to backups.
28.06.2023 15:05:10 ERROR: loading file 9;/usr/local/etc/squid/errors/en/ERR_ACCESS_DENIED': (2) No such file or directory
28.06.2023 15:05:10 Service Name: squid
28.06.2023 15:05:10 Starting Squid Cache version 5.8 for amd64-portbld-freebsd14.0...
31.12.1969 19:00:00
31.12.1969 19:00:00
31.12.1969 19:00:00
28.06.2023 15:04:30 Shutdown: Basic authentication.
28.06.2023 15:04:30 Shutdown: Digest authentication.
28.06.2023 15:04:30 Shutdown: Negotiate authentication.

Still hoping someone has thoughts about why they are missing to begin with.

~Eric

@johnpoz said in website name resolution:

@viragomann that is not going to add the host header info to what gets asked of the client.

Aha, I assumed that this HAproxy would implement it as host header. Didn't ever use a host name in the backend.

@Cabrinisamuele can you provide a screen shot of how you added them into Squidguard, and Squid ACL area?

Are you are attempting to block or approve domains/urls in Squid? Are you using SSL intercept or transparent mode? Do you have cache enabled? Browser in timeout means the URL is blocked. Did you mean the problem is when you attempt approved traffic it times out? Finally, why are you using both? Example: I use Squidguard to manage my blocks sites that I want no access to for Squid behalf. What is your end goal? Is it to block those URLs? Squidguard itself changes the Squid conf file and add the blocks or approve lists, so with Squidguard already running those domains are already included in Squids config in the background.