@viberua

Right. I did some reading on what Splice is capable of and it does seem Splice can see the domain name (not the full URL), but only after the tunnel is closed. It is then logged, rather than Bump which actually looks at the whole URL and replaces the certificate. But, this has its own set of problems for mobile devices.

Anyone? Please help me pfsense guru? Should I try to delete their browser cache, cookies and history?

We did a hangout on it:
https://youtu.be/FJSHMyrd29E

There is some relayd stuff there too but it's mostly about setting up HAProxy.

Steve

@briang70
Yep, have same issue. I've solved this with disable MITM mode before, but today i tried clear cache and is helped.

Dec 4 05:00:10 kernel pid 85818 (squid), jid 0, uid 100: exited on signal 6 Dec 4 05:00:11 kernel pid 86437 (squid), jid 0, uid 100: exited on signal 6 Dec 4 05:00:13 kernel pid 96986 (squid), jid 0, uid 100: exited on signal 6 Dec 4 05:00:15 kernel pid 654 (squid), jid 0, uid 100: exited on signal 6 Dec 4 05:00:16 kernel pid 3896 (squid), jid 0, uid 100: exited on signal 6 Dec 4 05:00:18 kernel pid 7281 (squid), jid 0, uid 100: exited on signal 6 Dec 4 05:01:05 Squid_Alarm 81770 Squid has exited. Reconfiguring filter. Dec 4 05:01:05 Squid_Alarm 82248 Attempting restart... Dec 4 05:01:08 Squid_Alarm 90439 Reconfiguring filter... Dec 4 05:01:08 check_reload_status Reloading filter Dec 4 05:01:10 php-fpm 44241 /rc.filter_configure_sync: [squid] Installed but not started. Not installing 'nat' rules. Dec 4 05:01:10 php-fpm 44241 /rc.filter_configure_sync: [squid] Installed but not started. Not installing 'pfearly' rules. Dec 4 05:01:10 php-fpm 44241 /rc.filter_configure_sync: [squid] Installed but not started. Not installing 'filter' rules.

in this thread we talking about it, and waiting for resolving
https://forum.netgate.com/topic/153933/solved-squid-0-4-44_25-assertion-failed-http-cc-1533-comm-monitorsread-serverconnection-fd
In PfSense redmine is created task https://redmine.pfsense.org/issues/10608
Need to wait for new ported squid version for PfSense. In FreeBSD this issue already patched.

Fresh news.
When MITM enabled in Splice all mode - Chrome Remote Desktop is connecting.
Even with removed ip 74.125.247.128 from ACL whitelist.
Will try to compare config with this two modes and add this ip to exclusion list.

@aGeekhere yeah i read those threads, hope soon squid will be patched
About error in cache log, i don't have time to check logs (all work is stopped), just searching solution, and found it when i disabled MITM mode.
May be i don't understand well what is splice all mode doing. But yellow marked text make me think that it should work. Because with disabled MITM is work the same as with enabled MITM Splicle All
fc1db843-9c3a-49c9-b509-2fdcfb339c16-зображення.png

I have found difference between this two cases, and now i know what is cause this problem.
In first case url was with https:// in second with http:// .
Now our Squid have issues with MITM mode and https:// content not filtering. Will hope in next updates issue with MITM will be solved.

Any news?

The same discussion is running on this thread, so closing this issue

https://forum.netgate.com/topic/153933/solved-squid-0-4-44_25-assertion-failed-http-cc-1533-comm-monitorsread-serverconnection-fd/12?_=1605797794715

@thiagocarlossilverio said in Integration between captive portal and squid. Usernames are not showing in access.log file:

Você conseguiu solucionar seu problema?
Estou com o mesmo problema:

not yet.

Just updated my squid + squidguard packages and it worked again. Able to login and access the internet using squid + captive portal authentication.

Dear Kiookoman, The problem got solved when all history including cookies were cleared. Thank you for your help again. regards Kiran

@mhmz

does it make any sense sitting on proxy server with deactivated aes-ni ?

Did you do it manually does it work? And if yes you modified config file or done it from UI ?
Thanks.

Did any one found a solution for this, I am using OBS and squid proxy, I am unable to do live streaming over OBS, kept 1935 as safe ports in squid config, still no use, need help