Squid errors
-
these steps you need to take to get squid 2.5.12 from the pfsense packages working with pfsense beta 1
pfSense console setup 8) Shell mkdir /var/squid chown squid:squid /var/squid mkdir /var/squid/logs chown squid:squid /var/squid/logs mkdir /var/squid/cache chown squid:squid /var/squid/cache mkdir /usr/local/etc/squid/advanced chown squid:squid /usr/local/etc/squid/advanced mkdir /usr/local/etc/squid/advanced/acls chown squid:squid /usr/local/etc/squid/advanced/acls touch /usr/local/etc/squid/advanced/acls/src_subnets.acl chown squid:squid /usr/local/etc/squid/advanced/acls/src_subnets.acl touch /usr/local/etc/squid/advanced/acls/src_unrestricted_ip.acl chown squid:squid /usr/local/etc/squid/advanced/acls/src_unrestricted_ip.acl squid -z exit pfSense console setup 11) Restart webConfigurator now config in pfsense browser http://ipadress/pkg_edit.php?xml=squid_ng.xml&id=0 go back to consul pfSense console setup 8) Shell squid ps -ax | grep squid if you see somving like this : 4683 ?? Ss 0:00.00 squid 4685 ?? S 0:00.19 (squid) (squid) 4695 p0 S+ 0:00.01 grep squid squid is running -
ok now squid runs fine.
still one problem.
how do i make it automatically start on each boot?btw… one more issue...
even that squid does run, when i check the access.log file,
i only see access to http://my.ip.address
and all access to the internet doesn showed up there.is this normal?
tnx
rex -
Try starting it by using the hidden xml-options for the config.xml: http://faq.pfsense.com/index.php?sid=18492&lang=en&action=artikel&cat=10&id=38&artlang=en&highlight=hidden
This of course won't be needed later when the package is final.
-
can you explain more detailed…
exactly, what to put into config.xml, where to put it?few issue i found:
transparent proxy doesnt seem to work (yet) ?
and proxy also refuse https protocol?tnx
rex -
here transparent proxy for poort 80 works but only with 3128 as squid poort on pfsense
the log is on /var/squid/logs/access.log10.141.254.1 - - [07/Jan/2006:09:32:23 +0100] "GET http://forum.pfsense.org/favicon.ico HTTP/1.1" 404 483 TCP_NEGATIVE_HIT:NONE 10.141.254.1 - - [07/Jan/2006:09:32:24 +0100] "GET http://www.imageshack.us/iframe.php?txtcolor=111111&type=blank HTTP/1.1" 200 1211 TCP_MISS:DIRECT 10.141.254.1 - - [07/Jan/2006:09:32:24 +0100] "GET http://forum.pfsense.org/favicon.ico HTTP/1.1" 404 483 TCP_NEGATIVE_HIT:NONE 10.141.254.1 - - [07/Jan/2006:09:34:06 +0100] "GET http://checkip.dyndns.org/ HTTP/1.0" 200 264 TCP_MISS:DIRECT 10.141.254.1 - - [07/Jan/2006:09:39:09 +0100] "GET http://checkip.dyndns.org/ HTTP/1.0" 200 264 TCP_MISS:DIRECTcheck /var/squid/logs/cache.log for squid errors
to start squid from config.xml:
add <shellcmd>squid</shellcmd> to config.xml
look at the code below for where to put it<system><optimization>normal</optimization> <hostname>pfsense</hostname> <domain>wlelystad.homeip.net</domain> <username>admin</username> <password>$1$.Qr5mty/$FZsZiYnpLMX1fs3VPAJpq1</password> <timezone>Europe/Amsterdam</timezone> <time-update-interval>300</time-update-interval> <timeservers>pool.ntp.org</timeservers> <webgui><protocol>http</protocol> <certificate><private-key><port>10000</port></private-key></certificate></webgui> <enablesshd>yes</enablesshd> <maximumstates><dnsallowoverride><dnsserver><dnsserver><shellcmd>squid</shellcmd></dnsserver></dnsserver></dnsallowoverride></maximumstates></system> -
these steps you need to take to get squid 2.5.12 from the pfsense packages working with pfsense beta 1
pfSense console setup 8) Shell mkdir /var/squid chown squid:squid /var/squid mkdir /var/squid/logs chown squid:squid /var/squid/logs mkdir /var/squid/cache chown squid:squid /var/squid/cache mkdir /usr/local/etc/squid/advanced chown squid:squid /usr/local/etc/squid/advanced mkdir /usr/local/etc/squid/advanced/acls chown squid:squid /usr/local/etc/squid/advanced/acls touch /usr/local/etc/squid/advanced/acls/src_subnets.acl chown squid:squid /usr/local/etc/squid/advanced/acls/src_subnets.acl touch /usr/local/etc/squid/advanced/acls/src_unrestricted_ip.acl chown squid:squid /usr/local/etc/squid/advanced/acls/src_unrestricted_ip.acl squid -z exit pfSense console setup 11) Restart webConfigurator now config in pfsense browser http://ipadress/pkg_edit.php?xml=squid_ng.xml&id=0 go back to consul pfSense console setup 8) Shell squid ps -ax | grep squid if you see somving like this : 4683 ?? Ss 0:00.00 squid 4685 ?? S 0:00.19 (squid) (squid) 4695 p0 S+ 0:00.01 grep squid squid is runningI just updated the squid INIT code to include this. Please test again!
-
This actually was a server error. Or package sync script stopped copying changes from CVS.
At any rate, everything is fixed now and the squid stuff should be on the latest version on the server now.
Speaking of this, we had yet another problem syncing packages. Please try squid again, I've fixed a ton of errors and made sure that it is sycning.
Out of the box squid starts now for me. Please let me know if this is not the case for anyone else, I really want squid working for 1.0.
-
Hi @all!
I've tried to use the captive portal together with squid in transparent mode. The captive portal was running before without any errors, but after I have installed squid I've got a lot of errors and squid refused the connection to any server on the wan-side.
Well, I've read the squid docs and faqs and there I've found, it isn't possible to run squid in transparent mode with authentification by acl, ldap and so on.
Now my question: Is it possible to run squid together with a captive portal?Thanks and so long
Schnuffel -
i uninstalled squid
removed leftovers
installed squid again
its now working direct for meby the way if you select any of the Authentication settings on squid then squid breeks
the squid auth files are missing
had to reinstall squid to get squid working again afther thatWarning: Unknown(/usr/local/pkg/squid_auth.inc): failed to open stream: No such file or directory in /usr/local/www/pkg_edit.php(164) : eval()'d code on line 1 Fatal error: (null)(): Failed opening required '/usr/local/pkg/squid_auth.inc' (include_path='.:/etc/inc:/usr/local/www:/usr/local/captiveportal') in /usr/local/www/pkg_edit.php(164) : eval()'d code on line 1only inc file i have in /usr/local/pkg is squid_ng.inc
the rest are xml filesthese steps you need to take to get squid 2.5.12 from the pfsense packages working with pfsense beta 1
pfSense console setup 8) Shell mkdir /var/squid chown squid:squid /var/squid mkdir /var/squid/logs chown squid:squid /var/squid/logs mkdir /var/squid/cache chown squid:squid /var/squid/cache mkdir /usr/local/etc/squid/advanced chown squid:squid /usr/local/etc/squid/advanced mkdir /usr/local/etc/squid/advanced/acls chown squid:squid /usr/local/etc/squid/advanced/acls touch /usr/local/etc/squid/advanced/acls/src_subnets.acl chown squid:squid /usr/local/etc/squid/advanced/acls/src_subnets.acl touch /usr/local/etc/squid/advanced/acls/src_unrestricted_ip.acl chown squid:squid /usr/local/etc/squid/advanced/acls/src_unrestricted_ip.acl squid -z exit pfSense console setup 11) Restart webConfigurator now config in pfsense browser http://ipadress/pkg_edit.php?xml=squid_ng.xml&id=0 go back to consul pfSense console setup 8) Shell squid ps -ax | grep squid if you see somving like this : 4683 ?? Ss 0:00.00 squid 4685 ?? S 0:00.19 (squid) (squid) 4695 p0 S+ 0:00.01 grep squid squid is runningI just updated the squid INIT code to include this. Please test again!
-
Did a clean install on VMware and installed the SQUID package.
As far as i can see it seams to be working.
I enabled logging in the web gui but the log can only be viewed from the shell.-
Only set logging and i saw requests.
Set the captive portal and that didn't work anymore :( -
Then set tranparted proxy delete the logs
Captive portal loggin page was working again but u could not get webpages. -
disabled captive portal and got requests in the logfiles.
I take it that the requests showing up ib the logfile indicate squid is working.
-
-
Warning: Unknown(/usr/local/pkg/squid_auth.inc): failed to open stream: No such file or directory in /usr/local/www/pkg_edit.php(164) : eval()'d code on line 1 Fatal error: (null)(): Failed opening required '/usr/local/pkg/squid_auth.inc' (include_path='.:/etc/inc:/usr/local/www:/usr/local/captiveportal') in /usr/local/www/pkg_edit.php(164) : eval()'d code on line 1I just updated squid_ng.xml to include squid_auth.inc. Deinstall the package and reinstall. Hoepfully this one is fixed now.
-
well that one is gone but…...
it is replaced by this one
Fatal error: Call to undefined function: global_eval_auth_options() in /usr/local/www/pkg_edit.php(164) : eval()'d code on line 1 -
More errors fixed. Please deinstall and reinstall the package and let me know if that error goes away.
-
oh oh!!! :o
Just installed the package… no more connection possible, everything is blocked !? No more WebGUI
Maybe Squid is not working with a loadbalance setup ?I've put back a config.xml from yesterday now inet works, but I can't access the webgui.. that's the only thing now...
When i type:
lighttpd
/libexec/ld-elf.so.1: Shared object "libpcre.so.0" not found, required by "lighttpd"
hmm, how to fix this ?
-
That happens when you uininstall a package however I don't recall that happening to Squid.
This bug is fixed in beta2, we need the package information for lighty in /var/db/ otherwise it won't work.
To fix it, do this from a shell:
pkg_add -r ftp://ftp2.freebsd.org/pub/FreeBSD/ports/i386/packages-6-stable/All/lighttpd-1.4.8.tbz
Then exit out to the menu and run option 11.
-
Sorry, that's what I get for answering emails when I first awake. I modified the original message.
pkg_add -r
-
Squid is not working for me.
Deleted SQUID, deleted all squid entries in config.xml
Reinstalled SQUIDNow all connection goes to 127.0.0.1:3128 when i check pftop
But no webpage loads on the browser.Error log in cache.log
2006/01/09 20:12:10| WARNING: Cannot run '/usr/local/libexec/squid/dnsserver' process.
2006/01/09 20:12:10| Accepting HTTP connections at 10.0.0.1, port 3128, FD 8.
2006/01/09 20:12:10| Accepting ICP messages at 0.0.0.0, port 3130, FD 9.
2006/01/09 20:12:10| Accepting HTCP messages on port 4827, FD 11.
2006/01/09 20:12:10| Accepting SNMP messages on port 3401, FD 13.
2006/01/09 20:12:10| WCCP Disabled.
2006/01/09 20:12:10| commBind: Cannot bind socket FD 14 to 127.0.0.1:0: (49) Can't assign requested address
2006/01/09 20:12:10| commBind: Cannot bind socket FD 14 to 127.0.0.1:0: (49) Can't assign requested address
2006/01/09 20:12:10| ipcCreate: Failed to create child FD.
2006/01/09 20:12:10| Loaded Icons.
2006/01/09 20:12:10| eventCleanup
2006/01/09 20:12:10| Ready to serve requests.I don't have a loopback address…
ping 127.0.0.1
PING 127.0.0.1 (127.0.0.1): 56 data bytes
ping: sendto: Can't assign requested addressEDIT: my loopback is only IPv6 why?
ifconfig
lo0: flags=8048 <loopback,running,multicast>mtu 16384
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x7What can I do to make it work?
thanks</loopback,running,multicast>
-
Rebooting will most likely fix this. The loopback bug is fixed in beta2.
-
Well I installed squid and it works fine only one problem.. My traffic shaping for Http no longer works. http traffic is pushed into the default queue. well I got to figure this out later but I guess if I change squid to port 80 it should be back on track.
-
well I got to figure this out later but I guess if I change squid to port 80 it should be back on track.
well that didnt work!