• Squid ssl proxy : NONE/200 X.X.X.X:443

    2
    1 Votes
    2 Posts
    2k Views
    G

    @guez I also specify that I use the transparent mode. If the solution is to configure a proxy by DHCP, that does not concern me and thank you to indicate it to me

  • Rocket Chat unable to connect over App, but only that

    1
    0 Votes
    1 Posts
    516 Views
    No one has replied
  • replace old squid

    1
    0 Votes
    1 Posts
    260 Views
    No one has replied
  • How to get squid to serve multiple servers off single WAN address?

    2
    0 Votes
    2 Posts
    432 Views
    No one has replied
  • HTTPS Everywhere Plugin For Squid

    3
    0 Votes
    3 Posts
    656 Views
    S

    Upgraded to pfSense 2.4.5 and this broke. I figured out the problem and it is very simple.

    Delete old stuff:

    pkg remove p5-XML-NamespaceSupport-1.12 pkg remove p5-XML-SAX-Base-1.09 pkg remove p5-XML-SAX-1.00 pkg remove p5-XML-LibXML-2.0132,1

    Install the new packages:

    pkg add https://pkg.freebsd.org/FreeBSD:11:amd64/latest/All/p5-XML-NamespaceSupport-1.12.txz pkg add https://pkg.freebsd.org/FreeBSD:11:amd64/latest/All/p5-XML-SAX-Base-1.09.txz pkg add https://pkg.freebsd.org/FreeBSD:11:amd64/latest/All/p5-XML-SAX-1.02.txz pkg add https://pkg.freebsd.org/FreeBSD:11:amd64/latest/All/p5-XML-LibXML-2.0202,1.txz

    For 2.5.0:

    pkg add https://pkg.freebsd.org/FreeBSD:12:amd64/latest/All/p5-XML-NamespaceSupport-1.12.txz pkg add https://pkg.freebsd.org/FreeBSD:12:amd64/latest/All/p5-XML-SAX-Base-1.09.txz pkg add https://pkg.freebsd.org/FreeBSD:12:amd64/latest/All/p5-XML-SAX-1.02.txz pkg add https://pkg.freebsd.org/FreeBSD:12:amd64/latest/All/p5-XML-LibXML-2.0202,1.txz

    But the most important thing!!!
    Open this file in a text editor:

    /usr/local/libexec/squid/https-everywhere/squid.pl

    Change to first line from:

    #!/usr/local/bin/perl5

    To:

    #!/usr/local/bin/perl

    And another thing that isn't necessary but I found helpful with heavy use is increasing the helpers:

    Go to Services > Squid Proxy Server
    Show advanced options at the bottom

    And update in Custom Options (Before Auth):

    url_rewrite_children 16
  • squidguard can't start

    1
    0 Votes
    1 Posts
    198 Views
    No one has replied
  • Using URL in HAProxy Backend instead of IP address

    5
    0 Votes
    5 Posts
    3k Views
    A

    Gotcha, thank you.

  • CMS with SSL check complain site is insecure when it isn't

    6
    0 Votes
    6 Posts
    1k Views
    tn1rpi3T

    @Gertjan Yeah, never mind. I'm taking it up with one of the CMS developers.

    Actually, I've used the CMS in question for almost a decade now.
    The problems began when I first used it behind HaProxy after they implemented the SSL-check..

    Anyway, thanx for your input.

  • Setting up ACME with HAProxy

    3
    0 Votes
    3 Posts
    932 Views
    MORGiONM

    @iPenguin I was able to get HAProxy & ACME working with this guide

    https://youtu.be/FWodNSZXcXs

  • Squid - Kerberos - update keytab issue

    1
    0 Votes
    1 Posts
    553 Views
    No one has replied
  • Squid suddenly won't start... (for reverse proxy)

    6
    0 Votes
    6 Posts
    954 Views
    GertjanG

    Check also https://forum.netgate.com/topic/151523/reverse-squid-no-longer-working-on-latest-development-branch

  • Push the rules for specific groups or users

    1
    0 Votes
    1 Posts
    129 Views
    No one has replied
  • HAProxy Empty Responses

    7
    0 Votes
    7 Posts
    3k Views
    M

    @PiBa
    Awesome! Thank you again @PiBa and apologies again for the ignorance on my part. Your insight was extremely helpful and the proxy is now behaving as I had hoped.

    Just a note in case anyone wonders, I tried disabling the transparent IP and that did not help with the interVLAN traffic. The problem only affected the ports defined in HAProxy (80,443) and did not resolve until I added the binded interface in the frontend. I did not expect to have to do that as I thought HAProxy would only listen on the defined ports but it happened to me.

  • HAproxy "Type" frontend setting

    3
    0 Votes
    3 Posts
    873 Views
    P

    @vinceepic
    Yes TCP mode would work.. But do you have a reason for not using "ssl/https(TCP mode)" which would give the same frontend/backend configuration regarding the passing of the ssl traffic without any changes, but would allow to set some SNI based acl's in the webgui?

  • HAProxy URL redirect

    4
    0 Votes
    4 Posts
    8k Views
    P

    @xternaal
    Add a acl X that checks 'host matches: service'
    Then add a action that will perform a 'http-request redirect' for fmt: 'location https://service.contoso.com' when the acl X matches.

  • [Solved] HaProxy not working/port Issue

    Moved
    23
    0 Votes
    23 Posts
    4k Views
    manjotscM

    @PiBa Thank you very much, for all the support you provided.

  • SquidGuard URL re-writing not working

    1
    0 Votes
    1 Posts
    204 Views
    No one has replied
  • TAG_NONE - Squid

    Moved
    1
    0 Votes
    1 Posts
    217 Views
    No one has replied
  • Squid Proxy Cache Security Update Advisory SQUID-2020:1

    1
    0 Votes
    1 Posts
    216 Views
    No one has replied
  • FTP Client Proxy Package - problem with firewall on port 21

    5
    0 Votes
    5 Posts
    1k Views
    DerelictD

    does a fix for this issue exist?

    Stop using FTP?

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.