• Squid leaking server IP

    2
    0 Votes
    2 Posts
    475 Views
    H
    That’s pretty poor. Do you get an error message when trying to access it? Are you able to try a free proxy to use a different IP? Try this https://whatismyip.network/ instead of Myip.com.
  • How do I set headers ?

    7
    0 Votes
    7 Posts
    2k Views
    DerelictD
    @Actionhenk Nice. One other thing: I haven't looked at it but I assume if you need double quotes in a string like that in the future you can just escape the ones inside the string with \"
  • IOS App Store not working with Squid + HTTPS/SSL Interception

    squid ios ssl
    1
    0 Votes
    1 Posts
    268 Views
    No one has replied
  • Lightsquid log retention period

    2
    0 Votes
    2 Posts
    459 Views
    KOMK
    I believe that they are stored in definitely. SSH in and go to /var/lightsquid/report and you will see the report structure. It as a folder for every day, and inside each folder are the particulars for that day. The main report has options for showing year to date, so it must keep everything forever.
  • Transparent proxy https error 400

    2
    0 Votes
    2 Posts
    389 Views
    M
    for other people with the same error. The problem was how mikrotik redirects the traffic. He used a dst nat rule which breaks the chain of trust. "Mangle" should be used
  • Squid to specific gateway

    Moved
    2
    0 Votes
    2 Posts
    298 Views
    stephenw10S
    You can set the outgoing source address for requests which will effectively set the gateway used. That is done using the tcp_outgoing_address directive in the custom options before auth field. You would need static IP(s) to use that though. Steve
  • Squid Reverse Proxy doesn't work TCP_MISS/404

    2
    0 Votes
    2 Posts
    1k Views
    D
    @douglas-filipe So after a big research I not found any solution... I tried to use HAProxy, without success too... I believe that reverse proxy packages doesn't work together with pf2ad solution or any other proxy auth solution. I'm right? I did new pfsense with no proxy auth and reverse proxy publish works great ! Best regards team!
  • lightsquid report filtering

    5
    0 Votes
    5 Posts
    654 Views
    KOMK
    @WD_Doug If none of the stock methods for reporting the user work for that, then you're going to have to hack something up. These might be useful: http://lightsquid.sourceforge.net/How%20It%20Work.html https://forum.netgate.com/topic/88886/lightsquid-not-showing-users/7 @mauricio2669 Not really, and even the report itself is built on the fly from several pieces so it's not easy to parse yourself.
  • SquidGuard / Light Squid Report / Squid Usewr Access Report

    1
    1 Votes
    1 Posts
    286 Views
    No one has replied
  • [solved] backend server nginx down HAProxy

    45
    0 Votes
    45 Posts
    12k Views
    P
    @wesleylc1 Then it seems you have answered your question why the host header must be send in checks . HAProxy's health-checks by default do not send this header and your nginx configuration needs it to find the correct virtual host with the server_name configuration. The 'default virtual host' likely returns the 400 response status. Its nice to know that doing some research and actually understanding how things work you can succeed with fishing without needing other people to give you the fish, that will definitely help with future diagnosing of issues.
  • Double server squid and rsyslog same pc?

    Moved
    6
    0 Votes
    6 Posts
    841 Views
    I
    @kiokoman thanks!
  • squidGuard squidguard_log.php wrong

    2
    0 Votes
    2 Posts
    317 Views
    jimpJ
    Make a bug report at https://redmine.pfsense.org/projects/pfsense-packages
  • lightsquid only 127.0.0.1 user

    Moved
    10
    0 Votes
    10 Posts
    1k Views
    stephenw10S
    Yeah, that looks more like real data.
  • not mail with SQUIDGUARD

    1
    0 Votes
    1 Posts
    338 Views
    No one has replied
  • send-proxy option

    1
    0 Votes
    1 Posts
    298 Views
    No one has replied
  • android devices not working with Root CA

    9
    0 Votes
    9 Posts
    2k Views
    dragoangelD
    @gwaitsi Unfortunately I doesn't know, something wrong maybe with you CA. I done this before without any issue. It must process with success by cert install. No download needed. Can you try create new CA over Cert Manager and try again?
  • squid working, but how to bypass

    2
    0 Votes
    2 Posts
    862 Views
    M
    Some applications do not work well with PAC file. Are you using authentication ? Based on your config, it seems that you are bumping everything, tried splice all? Based on the problems I had, I found this: Some apps can work with PAC file, others not. Some apps can work with proxy authentication, like Kerberos for an exemple, others not. So, sometimes you will see Access Denied in Squid, because the apps like Pokerstars for an example are not carrying credentials to the proxy. Here, I have a Squid proxy with SSO, using Kerberos. Some apps don't work if I set Direct at the PAC file, however, they do work when I set a bypass like this: before_auth: acl whitelist dstdomain .pokerstars.com .dropbox.com <---- This allow everything to pokerstars.com and dropbox.com to go through the proxy without authentication auth_param negotiate program /usr/local/libexec/squid/negotiate_kerberos_auth -k /usr/local/etc/squid/mykeytab.keytab auth_param negotiate children 100 auth_param negotiate keep_alive on http_access allow whitelist <----- This allow whitelist before auth is required acl auth proxy_auth REQUIRED http_access deny !auth http_access allow auth
  • Comodo SSL for pfsense webgui

    Moved
    13
    0 Votes
    13 Posts
    2k Views
    jimpJ
    ACME/Let's Encrypt is the best thing to do here, assuming you have a public domain available you can leverage and a supported DNS provider.
  • Proxy authentication error

    1
    0 Votes
    1 Posts
    191 Views
    No one has replied
  • squidguard Package/Squid/Realtime Stats (SQStat)

    1
    0 Votes
    1 Posts
    354 Views
    No one has replied
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.