Squid Returned to Packages *** PLEASE TEST ***
-
not yet, I just arrived home…
But I'll try it out..
-
I think the squid version we use has no acl support..
If I just remove all acl lines and add http_access deny all
you would suspect no data will get thru, but it keeps running. -
May be one seriouse bug when installed any redirector package (squidGuard for example) who need Squid package.
*** When redirector installed - we can't correctly full reinstall or delete squid package - redirector block delete Squid package ***May be need check installation known redirector packages and notify user about this.
-
I did not know squidguard already worked.
About the ACL support. From what I can see the unrestricted acl does have a effect. Normally windows update fails, but it works if I put the IP in the unrestricted box on the access control page.
Weird
-
I did not know squidguard already worked.
About the ACL support. From what I can see the unrestricted acl does have a effect. Normally windows update fails, but it works if I put the IP in the unrestricted box on the access control page.
Weird
This not only squidGuard - any other who need squid.
ps: minimum 2 variant of squidGuard package worked
http://forum.pfsense.org/index.php/topic,3107.0.html
and
http://forum.pfsense.org/index.php/topic,3111.0.htmlbut this no in official packages
-
Downloading package configuration file… done.
Saving updated package information... done.
Downloading squid and its dependencies... done.
Checking for successful package installation... failed!Installation aborted.
Any suggestions?
-
On boot, the screen freezes on the line "Stopping /usr/local/etc/rc.d/proxy_monitor.sh" I know this was an issue under previous versions as well but never really got resolved. The system boots, the proxy runs, there is just no console.
-
You need to update to the latest testing snapshot…
http://www.pfsense.com/~sullrich/1.0.1-SNAPSHOT-12-14-2006/
-
Running 1.0.1-SNAPSHOT-12-20-2006 and the 2.6.5_1-p2 release of squid and cannot get the blacklist to work at all. there is nothing being output to show an error. Its like its just ignoring the list. also i noticed that I could not get my browser to connect directly to port 3128 when setting it to manually use the proxy until i changed it to a different port.
-
Running 1.0.1-SNAPSHOT-12-20-2006 and the 2.6.5_1-p2 release of squid and cannot get the blacklist to work at all. there is nothing being output to show an error. Its like its just ignoring the list. also i noticed that I could not get my browser to connect directly to port 3128 when setting it to manually use the proxy until i changed it to a different port.
That works good over here, did you dissable the transparent proxy? In transparent proxy the port setting does nothing..
-
yes i did. i turned it off before trying it manually. with it not blacklisting, its next to impossible to tell if the transparent proxy is even doing anything so I wanted to see what was happening when i ran it manually thru the proxy. both ways ignore the blacklist. just providing feedback for the guys working on this port.
-
i have clean 1.0.1-SNAPSHOT-12-20-2006 built on Thu Dec 21 01:44:22 UTC 2006
squid installed (2.6.5_1-p2). status/services/squid start success. and services/proxy server/transparent proxy checked and save clicked:"The following input errors were detected:
* You can not run squid on the same port as the webgui"any suggestions?
-
"NT domain" authentication method doesn't work. Squid dies after several seconds of run :'(
-
Oh.
Any of authentication methods does not work! Squid doesn't show authentication request window, just opens the requested site. -
i have clean 1.0.1-SNAPSHOT-12-20-2006 built on Thu Dec 21 01:44:22 UTC 2006
squid installed (2.6.5_1-p2). status/services/squid start success. and services/proxy server/transparent proxy checked and save clicked:"The following input errors were detected:
* You can not run squid on the same port as the webgui"any suggestions?
i think the redirect rules are gone rong
in earlyer version the redirect rule was ignoring redirects for trafic directed to the interface ip
so then there is no problem with squid and webgui on the same port
dest !lanip dest port 80 redirect to 127.0.0.1 dest port 3128 -
Well, I just installed squid with transparent proxy and got this…...any ideas?
he following input errors were detected:* You must start log location with a / mark
* That is not a valid log location dir
* You can not run squid on the same port as the webgui -
Well, I just installed squid with transparent proxy and got this…...any ideas?
he following input errors were detected:* You must start log location with a / mark
* That is not a valid log location dir
* You can not run squid on the same port as the webguiIn the squid settings the log dir should be defined as something like /var/log/squid
Squid and the lighttpd (gui web server) can not be bound to the same port thus the error. It has nothing to do with the redirect rules.
-
Squid and the lighttpd (gui web server) can not be bound to the same port thus the error. It has nothing to do with the redirect rules.
Well it USED to work just fine without editing the port the WebGUI ran on. Squid is not being bound to port 80. It is being bound by default to 3128 with transparent proxy doing a redirect of all port 80 outbound traffic being forwarded to the squid port. Or at least that is what is supposed to be happening.
-
guys, we didn't add the check for fun.
yes it used to work, but not anymore, there are some changes made to squid.The older versions couldn't handle transparency, later the modified it a bit so that you could setup a nat within squid. so all port 80 request would be redirected to (for example port 3128), but that's no longer, squid can handle directly transparency without the redirection.
But this means it runs like a sort of special webserver, and you can't run 2 services on the same port (ok there are exceptions), so you can't run squid and the webserver on the same port.. -
Squid can be run on any port in transparent mode. In Smoothwall, it runs on port 800. In pfSense, it is set up to run on port 80. The important thing is that the pf redirection and the port squid listens on must be the same. Maybe it is a good idea to have squid on port 3128, and just change the redirect rule in pf accordingly, then this whole issue with the webgui goes away.
my 2c.
Nicki