Thanks all for the replys :-) I'll try that and lets se if that work :) Best Regards :-)

any replay?

Either tell  squid to use  dns servers of your vpn provider, see squid  doc for exact  configuration parameters, or assign the vpn lan clients  your vpn provider dns by dhcp. Or both.

log erros: May 28 17:46:47 php: rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc. May 28 17:46:47 php: rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was 'no IP address found for itrsa.com.ar /tmp/rules.test.packages:163: could not parse host specification no IP address found for itrsa.com.ar /tmp/rules.test.packages:164: could not parse host specification no IP address found for itrsa.com.ar /tmp/rules.test.packages:165: could not parse host specification' May 28 17:46:43 php: rc.filter_configure_sync: Not installing NAT reflection rules for a port range > 500 May 28 17:46:31 php: rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc. May 28 17:46:31 php: rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was 'no IP address found for itrsa.com.ar /tmp/rules.test.packages:163: could not parse host specification no IP address found for itrsa.com.ar /tmp/rules.test.packages:164: could not parse host specification no IP address found for itrsa.com.ar /tmp/rules.test.packages:165: could not parse host specification'

Did you see my reply in your previous post about this issue? https://forum.pfsense.org/index.php?topic=94437.msg524779#msg524779

Problem is the c-icap.conf file does not contain the line indicated in the instructions: Remove ldap configuration'Manager:Apassword@ldap.chtsanti.net?o=chtsanti?mermberUid?(&(objectClass=posixGroup)(cn=%s))' from 'c-icap.conf' field. In the c-icap.conf file, the ldap section looks like such: # Module: ldap_module # Description: # Add LDAP support to c-icap. The user can use LDAP based lookup tables # using the following lookup table path: #       ldap://[username:password@]ldapserver?base?attr1,attr2?filter[{[cache=no]}] # The filter can contain the "%s" formating code which will be replaced by # the search key # Examples of supported ldap urls: #     ldap://ldap.chtsanti.net?o=chtsanti?cn,uid?uid=%s #     ldap://cn=Directory Manager:Apassword@ldap.chtsanti.net?o=chtsanti?mermberUid?(&(objectClass=posixGroup)(cn=%s)) # # WARNING: is not enough tested it may contain bugs! # Example: # Module common ldap_module.so # End module: ldap_module So it appears that it is throwing an error although the .conf file does not contain the aforementioned lines?

I have no idea.  I don't use squid3 on pfSense anymore.

I'm a little late updating, but it was indeed a dns problem.

1.  Educate your users on what is acceptable and punish the users who don't comply with your policy 2.  Block these proxy sites one by one as you discover them. That's about all you can do.

never was able to figure this one out  :'(

hi Thanks to you All i have Read and followed the article and my issue has been resolved https://forum.pfsense.org/index.php/topic,62263.0.html Thanks to you all

Hi, I ran into the same issue. Using Squid3. Noticed that in my case the streaming would start after 3-5 min. Also check Services/Proxy Server/Real Time and noticed quite a few TCP_MISS_ABORTED. My interpretation was that these occurred due to the client application in my local network timed out trying to connect to the remote server. Tried adding below in squidclamav.conf rendered no positive result: # Do not scan audio streaming abort ^.*\.(m3u|pls|wmx|aac|mpeg)$ abortcontent ^audio/m3u$ abortcontent ^audio/pls$ abortcontent ^audio/wmx$ abortcontent ^audio/mpeg$ abortcontent ^audio/aac$ abortcontent ^.*audio\/mp4.*$ In my case the resolution was below parameter change in squidclamav.conf: dnslookup 0 After restarting squid and c-icap services, audio streaming worked as expected. //Jimmy

Yeah, stuff like that is almost always a CDN of some sort.