Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid3 - New GUI with sync, normal and reverse proxy

    Scheduled Pinned Locked Moved Cache/Proxy
    428 Posts 104 Posters 479.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      dhipo
      last edited by

      i want work on squidguard sync too .. can you send me way to do this …like squid ?

      Dhix Networks
      Everything Secure

      http://www.dhix.com.br

      1 Reply Last reply Reply Quote 0
      • marcellocM
        marcelloc
        last edited by

        @dhipo:

        i want work on squidguard sync too .. can you send me way to do this …like squid ?

        You will need to code it on squidguard inc file and create/or use squid_sync xml file.

        If you don't know how pfsense gui works, it will be not that easy.

        take a look on ipguard package files, it's a small package with sync code.

        att,
        Marcello Coutinho

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • D
          dhipo
          last edited by

          obrigado Marcello..

          onde vc está no Br ?

          Dhix Networks
          Everything Secure

          http://www.dhix.com.br

          1 Reply Last reply Reply Quote 0
          • marcellocM
            marcelloc
            last edited by

            @dhipo:

            onde vc está no Br ?

            Take a look on my profile and on portuguese forum ;)

            Treinamentos de Elite: http://sys-squad.com

            Help a community developer! ;D

            1 Reply Last reply Reply Quote 0
            • _
              _igor_
              last edited by

              seems that squid doesn't accept any entry in "custom options, i get errors:

              php: /pkg_edit.php: The command '/usr/local/sbin/squid -k reconfigure -f /usr/local/etc/squid/squid.conf' returned exit code '1', the output was 'FATAL: Bungled squid.conf line 83: http_port 8080 transparent; Squid Cache (Version 3.1.20): Terminated abnormally. CPU Usage: 0.018 seconds = 0.009 user + 0.009 sys Maximum Resident Size: 5176 KB Page faults with physical i/o: 0'

              I tried with this setup here: http://forum.pfsense.org/index.php/topic,42413.0.html.

              I stripped the ident-entries, because they don't work too :(

              1 Reply Last reply Reply Quote 0
              • marcellocM
                marcelloc
                last edited by

                @_igor_:

                seems that squid doesn't accept any entry in "custom options, i get errors:
                the output was 'FATAL: Bungled squid.conf line 83: http_port 8080 transparent;

                Is it your custom option? http_port 8080 transparent?

                Treinamentos de Elite: http://sys-squad.com

                Help a community developer! ;D

                1 Reply Last reply Reply Quote 0
                • _
                  _igor_
                  last edited by

                  yes it is. But other custom options generate the same kind of errors, so i suppose, custom options don't work here. :(

                  1 Reply Last reply Reply Quote 0
                  • marcellocM
                    marcelloc
                    last edited by

                    @_igor_:

                    yes it is.

                    try ** http_port 8080 intercept** on squid 3.1

                    Treinamentos de Elite: http://sys-squad.com

                    Help a community developer! ;D

                    1 Reply Last reply Reply Quote 0
                    • _
                      _igor_
                      last edited by

                      None of any entry works. All entries  result in a "bungled squid config". It doesnt work. :(

                      1 Reply Last reply Reply Quote 0
                      • marcellocM
                        marcelloc
                        last edited by

                        what do you have on squid.conf file after applying your config?

                        The squid gui includes  http_port config.

                        Treinamentos de Elite: http://sys-squad.com

                        Help a community developer! ;D

                        1 Reply Last reply Reply Quote 0
                        • _
                          _igor_
                          last edited by

                          Here we go:

                          # Do not edit manually !
                          http_port 192.168.1.1:8080
                          icp_port 7
                          
                          pid_filename /var/run/squid.pid
                          cache_effective_user proxy
                          cache_effective_group proxy
                          error_default_language de
                          icon_directory /usr/local/etc/squid/icons
                          visible_hostname pfsense
                          cache_mgr hier@da.de
                          access_log /var/squid/logs/access.log
                          cache_log /var/squid/logs/cache.log
                          cache_store_log none
                          sslcrtd_children 0
                          logfile_rotate 0
                          shutdown_lifetime 3 seconds
                          uri_whitespace encode
                          
                          acl dynamic urlpath_regex cgi-bin \?
                          cache deny dynamic
                          cache_mem 8 MB
                          maximum_object_size_in_memory 32 KB
                          memory_replacement_policy heap GDSF
                          cache_replacement_policy heap LFUDA
                          cache_dir ufs /var/squid/cache 1000000 16 256
                          minimum_object_size 0 KB
                          maximum_object_size 4 KB
                          offline_mode offcache_swap_low 90
                          cache_swap_high 95
                          
                          # No redirector configured
                          
                          #Remote proxies
                          
                          # Setup some default acls
                          acl allsrc src all
                          acl localhost src 127.0.0.1/32
                          acl safeports port 21 70 80 210 280 443 488 563 591 631 777 901  3128 1025-65535 
                          acl sslports port 443 563  
                          acl manager proto cache_object
                          acl purge method PURGE
                          acl connect method CONNECT
                          
                          acl allowed_subnets src 192.168.1.0/24
                          acl whitelist dstdom_regex -i "/var/squid/acl/whitelist.acl"
                          http_access allow manager localhost
                          
                          # Allow external cache managers
                          acl ext_manager src 127.0.0.1
                          acl ext_manager src 192.168.1.1
                          acl ext_manager src 
                          http_access allow manager ext_manager
                          
                          http_access deny manager
                          http_access allow purge localhost
                          http_access deny purge
                          http_access deny !safeports
                          http_access deny CONNECT !sslports
                          
                          # Always allow localhost connections
                          http_access allow localhost
                          
                          request_body_max_size 0 KB
                          delay_pools 1
                          delay_class 1 2
                          delay_parameters 1 -1/-1 -1/-1
                          delay_initial_bucket_level 100
                          delay_access 1 allow allsrc
                          
                          # Reverse Proxy settings
                          
                          # Package Integration
                          redirect_program /usr/local/bin/squidGuard -c /usr/local/etc/squidGuard/squidGuard.conf
                          redirector_bypass on
                          redirect_children 3
                          
                          # Custom options
                          # http_port 8080 intercept;
                          ident_lookup_access allow all;
                          ident_timeout 3 seconds;
                          
                          # Always allow access to whitelist domains
                          http_access allow whitelist
                          # Setup allowed acls
                          http_access allow allowed_subnets
                          # Default block all to be sure
                          http_access deny allsrc
                          
                          

                          and here the log-entry:

                          php: /pkg_edit.php: The command '/usr/local/sbin/squid -k reconfigure -f /usr/local/etc/squid/squid.conf' returned exit code '1', the output was '2012/07/18 16:32:18| aclParseAclList: ACL name 'all;' not found. FATAL: Bungled squid.conf line 84: ident_lookup_access allow all; Squid Cache (Version 3.1.20): Terminated abnormally. CPU Usage: 0.018 seconds = 0.018 user + 0.000 sys Maximum Resident Size: 4112 KB Page faults with physical i/o: 0'
                          

                          Do you need more info?

                          1 Reply Last reply Reply Quote 0
                          • marcellocM
                            marcelloc
                            last edited by

                            Custom options

                            http_port 8080 intercept;

                            ident_lookup_access allow all;
                            ident_timeout 3 seconds;

                            Note that only your custom options has ";" at the end.

                            Remove it and test again.

                            Treinamentos de Elite: http://sys-squad.com

                            Help a community developer! ;D

                            1 Reply Last reply Reply Quote 0
                            • _
                              _igor_
                              last edited by

                              duh! That was it. Thx for your help!!

                              1 Reply Last reply Reply Quote 0
                              • nesenseN
                                nesense
                                last edited by

                                Hello, just reinstalled squid3 and it is still not caching. logs give TCP_MISS/200

                                thank you

                                1 Reply Last reply Reply Quote 0
                                • A
                                  al_reidy
                                  last edited by

                                  my HD died in the router. on a fresh reinstall i can install the squid3 package but i get this in the system log.

                                  php: /pkg_mgr_install.php: XML error: Mismatched tag at line 348 in /usr/local/pkg/squid.xml

                                  the package doesnt have any menu item options either.

                                  corrupt package?

                                  1 Reply Last reply Reply Quote 0
                                  • A
                                    al_reidy
                                    last edited by

                                    the line in the xml refers to :

                                    <default_value>en</default_value>

                                    as part of

                                    <field><fielddescr>Language</fielddescr>
                                    <fieldname>error_language</fieldname>
                                    <description>Select the language in which the proxy server will display error messages to users.</description>
                                    <type>select</type>
                                    <default_value>en</default_value></field>

                                    1 Reply Last reply Reply Quote 0
                                    • P
                                      podilarius
                                      last edited by

                                      a pull request has been submited by phil that should fix that. We are waiting on a dev to pull in that request.

                                      1 Reply Last reply Reply Quote 0
                                      • marcellocM
                                        marcelloc
                                        last edited by

                                        @al_reidy:

                                        the line in the xml refers to :

                                        <default_value>en</default_value>

                                        It's fixed now, wait 15 minutes and reinstall

                                        att,
                                        Marcello Coutinho

                                        Treinamentos de Elite: http://sys-squad.com

                                        Help a community developer! ;D

                                        1 Reply Last reply Reply Quote 0
                                        • P
                                          podilarius
                                          last edited by

                                          Thanks!

                                          1 Reply Last reply Reply Quote 0
                                          • P
                                            phil.davis
                                            last edited by

                                            Apologies to all - my little "fix" for the default language had a bit of extra cut-and-paste somehow. I noticed it soon after it got committed, but unfortunately it took quite a while for anyone with the necessary privs to commit the better version. I'll stare a lot harder at seemingly mindless fixes in future!

                                            As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
                                            If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.