@jc1976 said in Squid on 2.8:
upgrade an issue developed between suricata, pfblocker, and unbound. when i disable the two packages, all works fine
Let's consider :
If you leave the 'unbound' (the resolver) settings to "all default", the way you found them when you first installed pfSense.
You remove / don't install the extra stuff = suricata and pfblocker.
Then : no issues what so ever.
Right ?
This means your issue isn't "pfSense 2.8.0" or the upgrade. Its an 'ordinary' package settings issue - call the admin ๐
Tell you boss that suricata can only filter non TLS traffic **, something that doesn't exist anymore. Check for yourself : who visits http (port 80) sites these day ? Who collects mail using port 110 ? Who sends mail using port 25 ?
Imho : suricata, for what it's worth, can't do much these days, it can 'see' the data payload in the packets. Everything is TLS these days.
** It is possible to do TLS filtering, but that demands a 'proxy' setup, making you a real expert.
pfBlockerng is blocking you, DNS or something else ? That's any easy one, and rather simple do debug.