2.0.3 Squidguard not working
-
Call me stupid but the file system on the CF is read-only? How do I edit the rc.embedded file?
I tried vi as a su but I still get the same results. Read only system
Thanks again,
Todd
-
Call me stupid but the file system on the CF is read-only? How do I edit the rc.embedded file?
I tried vi as a su but I still get the same results. Read only system
Thanks again,
Todd
Don't know the syntax on the command shell but on the packages they use "conf_mount_ro();" and "conf_mount_rw();"
I am using the blacklists from www.shallalist.de
I am just using some of the categories and not all and I see no reason to "spam" my Target Lists on squidguard with unused categories. What I do is downloading the file from the website, open it with 7zip and removing the unneeded categories. After that I upload it to /tmp and then import it in squidguard.To delete the old databases go to squidguard –> blacklists and then click on the white cross on the red bottom. This take some time but it will restore the default database.
-
Call me stupid but the file system on the CF is read-only? How do I edit the rc.embedded file?
I tried vi as a su but I still get the same results. Read only system
Thanks again,
Todd
To re-mount e.g. the root filesystem rw you can use
mount -uw / -
Don't use the mount command directly that has caused problems in the past. Use the built in scripts, see: http://doc.pfsense.org/index.php/Remount_embedded_filesystem_as_read-write
Alternatively use the editor in the webgui which takes care of that for you. Diagnostics: Edit File:
Steve
-
Don't use the mount command directly that has caused problems in the past. Use the built in scripts, see: http://doc.pfsense.org/index.php/Remount_embedded_filesystem_as_read-write
Alternatively use the editor in the webgui which takes care of that for you. Diagnostics: Edit File:
Steve
Thanks, Steve, for your correcting me. I've used the mount command in the past without any issuses. I was not aware of possible problems but like to learn :)
Peter
-
I recently addressed the question of running Squid on a nanoBSD installation. There are some limitiations. I hope this thread my be helpful:
http://forum.pfsense.org/index.php/topic,59932.msg322453.htmlYes, I know that it works, I've already tested and used it. Increasing var and tmp size the only limitation is that you cannot do caching and you have to reload blacklist every time the box restarts, otherwise I have it in production without any problem..
-
I've used the mount command in the past without any issuses.
It's very unlikely to cause any problems.
Sometime during the development of 2.0 the mount script became broken in some conditions. This left the filesystem as RW which was not in itself a problem, Nano doesn't try to write anything anyway. However anyone using the mount command to set it RO immediately ran into trouble because the system could not longer re-mount the filesystem as RW via the script resulting in not being able to save any changes. This has of course been fixed for the release version but it's good practice to use the same method the system does to avoid any mistakes, IMHO. ;)Steve
-
I think with everyone's help I have this figured out, but I need a little more assistance.
I have increased the size of the /var and /tmp inside the rc.embedded file and that has helped greatly with the importing of the blacklists however there is just not enough memory on the alix board.
So here is my proposed fix:
Add an external usb drive which will server as my /var and /tmp. In order to do this I need to change the rc.embedded file again. This file currently mounts sections of memory for /var and /tmp. The follow two lines do this:mdfs -S -M -s $(tmpsize) md /tmp
and
mdfs -S -M -s $(varsize) md /var
Because I am not very familiar with FreeBSD I need help to change those lines so that it creates the directories on /dev/da0.
If this solves my problems, I will make another post with the steps needed for anyone else to follow.
Thanks in advance,
Todd
-
You can do it (but I cannot help you because I don't know so much about BSD),
the problem is that in tmp were written lots of data, so probably USB drive will be damaged after few time.. -
It's not as easy as just changing those lines. Creating a ramdisk does not require anything else. Using an external drive requires it to be formated correctly and mounted before you can use it. There have been a few posts about this recently, relating to using an external drive for a squid cache for Alix.
http://doc.pfsense.org/index.php/Local_Disk_Storage_on_Embedded_%28soekris%29
Steve
-
It's not as easy as just changing those lines. Creating a ramdisk does not require anything else. Using an external drive requires it to be formated correctly and mounted before you can use it. There have been a few posts about this recently, relating to using an external drive for a squid cache for Alix.
http://doc.pfsense.org/index.php/Local_Disk_Storage_on_Embedded_%28soekris%29
Steve
I have read the article you mentioned but it does not get me far enough.
I have been able to mount the USB hard drive and it has already been formatted. I can mount the drive to /mnt but I just cannot figure out how to mount it to /tmp. The RC.embedded file sets up the /tmp folder to be loaded into a ramdisk but when I comment out that line and add /mount /dev/ufs/usbdisk /tmp it errors out.
-
I have solved my problem by following this article:
http://mikepowells.net/tag/pfsense/
Basically, I purchased a CF Micro Drive that allowed me to install the full version on pfsense. I don't know how long the Micro Drive will last so I am building a custom box to replace the ALIX boards. I am using an ITX board with dual NICs and an additions PCI slot for a DMZ if needed. The total cost is $348 which I don't think is to bad.
Thanks for all the input.
Todd
