@follysuperscript

I got this working by adding the following to the back-end > advanced settings > "Per server pass thru"

I added:
source <CARP_VIP>

Replace <CARP_VIP> with the IP you want the health check to originate from.

@andreymoiseev said in light squid change password:

Good afternoon. I apologize for my english. Tell me how to change the default password for light squid ?

Change the password to the one you want.
Then on the page at the bottom click on Save and that's it

26941259-f3a3-4daa-8c9e-fd57f1cf5479-image.png

Still present in HaProxy-devel 0.62_10. While workaround is simple indeed (disable backend, save and enable backend, save) it’s still annoying and I don’t understand what’s exactly happening here.

Hi ,
after creating the whitelist, create a "myAllowlist" Group ACL
Within this group in the "Target Rules List" area configure your Target Categories as a "whitelist".

908e8c6f-bf69-4e8b-befd-9bea2260ae96-image.png

At the bottom under "Default access [all]" configure as "Deny".

5f58ee89-7da0-4805-9945-9ff930e81f90-image.png

Save the configuration and after saving, to make the changes operational, go to "General settings" and press the "Apply" button

This blocks all traffic except the whitelist.

I hope it is useful
Greetings and good work

@ttgest you can also try a regular expression tester online. I found a good one. I was having issues with t.co I wanted it blocked however it would block microsoft.com I had to adjust and test with the regular expression tester. Some basic examples below.

Screenshot_20220524-072731.png !

Screenshot_20220524-072641.png!

@smalldragoon UP ?

still no other options to enable caching for reverse proxy's ?

@nasheayahu Thanks a lot for this, looks very detailed , I will work on this and back to you with the outcome
Thanks
Lionel

here all:

X-Content-Type-Options
nosniff

X-Frame-Options
SAMEORIGIN

Content-Security-Policy
upgrade-insecure-requests

Referrer-Policy
strict-origin-when-cross-origin

Permissions-Policy
geolocation=(self)

ca80d5b6-6097-4607-a0b1-ce3ba55432e4-image.png

Example

29830684-3124-4345-a29b-42cd1abea9c5-image.png

@crester
The Not is subordinate in this ACL.
You have configured an ACL to match an URL parameter. Is this really what you want at all? Since you didn't state any parameter name, I'm not sure in this.

@viragomann
OK, I will create another post with a more specific topic on shared frontend
thanks for your time and help !

I know this is an older post/thread, but I am running into the issue with HAProxy and Organizr not getting along. I am new to HAProxy and not really sure how to implement the fix here. Would anyone be willing to explain it to me in detail?

bump anyone?

I don't know if the adult file was just to big for squidguard or what, but i loaded this one instead, and everything is working well now!

http://dsi.ut-capitole.fr/blacklists/download/blacklists_for_pfsense_reducted.tar.gz

I was having the same problem. Loaded this one, and it started working much better.
http://dsi.ut-capitole.fr/blacklists/download/blacklists_for_pfsense_reducted.tar.gz