Squid 3.3.10 para pfsense 2.0 e 2.1 com filtro de SSL/HTTPS
-
Atualizei a instalação do pacote para já incluir a libltdl-2.4.2 na versão 2.0.x
Qual versão do pfsense você esta usando?
-
a versão é 2.0.3
-
a versão é 2.0.3
Ok. Basta seguir o procedimento que postei agora a pouco ou esperar uns 10 minutos e reinstalar o pacote.
-
fiz nova resintalação.. agora subiu.. mas o squidguard não.. deu erro
May 13 21:08:06 php: /pkg_edit.php: Reloading Squid for configuration sync May 13 21:08:06 php: /pkg_edit.php: The command '/usr/local/sbin/squid -k reconfigure -f /usr/local/etc/squid/squid.conf' returned exit code '1', the output was '2013/05/13 21:08:06| Warning: empty ACL: acl localnet src 2013/05/13 21:08:06| WARNING: (B) '127.0.0.1' is a subnetwork of (A) '127.0.0.1' 2013/05/13 21:08:06| WARNING: because of this '127.0.0.1' is ignored to keep splay tree searching predictable 2013/05/13 21:08:06| WARNING: You should probably remove '127.0.0.1' from the ACL named 'localhost' 2013/05/13 21:08:06| WARNING: (B) '127.0.0.1' is a subnetwork of (A) '127.0.0.1' 2013/05/13 21:08:06| WARNING: because of this '127.0.0.1' is ignored to keep splay tree searching predictable 2013/05/13 21:08:06| WARNING: You should probably remove '127.0.0.1' from the ACL named 'localhost' squid: ERROR: Could not send signal 1 to process 11137: (3) No such process' May 13 21:08:06 check_reload_status: Reloading filter May 13 21:08:08 php: : rc.newwanip: Failed to update opt1 IP, restarting... May 13 21:08:08 php: /pkg_edit.php: Reloading Squid for configuration sync May 13 21:08:08 check_reload_status: Configuring interface opt1 May 13 21:08:08 php: /pkg_edit.php: The command '/usr/local/sbin/squid -k reconfigure -f /usr/local/etc/squid/squid.conf' returned exit code '1', the output was '2013/05/13 21:08:08| Warning: empty ACL: acl localnet src 2013/05/13 21:08:08| WARNING: (B) '127.0.0.1' is a subnetwork of (A) '127.0.0.1' 2013/05/13 21:08:08| WARNING: because of this '127.0.0.1' is ignored to keep splay tree searching predictable 2013/05/13 21:08:08| WARNING: You should probably remove '127.0.0.1' from the ACL named 'localhost' 2013/05/13 21:08:08| WARNING: (B) '127.0.0.1' is a subnetwork of (A) '127.0.0.1' 2013/05/13 21:08:08| WARNING: because of this '127.0.0.1' is ignored to keep splay tree searching predictable 2013/05/13 21:08:08| WARNING: You should probably remove '127.0.0.1' from the ACL named 'localhost' squid: ERROR: Could not send signal 1 to process 11137: (3) No such process' -
fiz nova resintalação.. agora subiu.. mas o squidguard não.. deu erro
Só vi warnings e um aviso que o squid não estava rodando.
Na versão 3.3, o squidguard só é executado sob demanda.
Tem como acertar isso, mas envolve alterações no squidguard. -
tem alguma ideia ??
-
tem alguma ideia ??
O squid está execuando? está ouvindo na porta que você configurou?
-
[2.0.3-RELEASE][admin@pfSensel]/usr/local/lib(11): netstat -na | grep "3128" tcp4 0 0 127.0.0.1.3128 *.* CLOSED tcp4 0 0 192.168.0.1.3128 *.* CLOSEDroot 19474 0.0 0.3 36312 10916 ?? Is 9:05PM 0:00.00 /usr/local/sbin/squid -f /usr/local/etc/squid/squid.conf proxy 20154 0.0 0.4 48604 16680 ?? I 9:05PM 0:00.04 (squid-1) -f /usr/local/etc/squid/squid.conf (squid) -
Está funcionando…
-
mas o squidguard não..
-
Tentei de varias formas fazer o squid funcionar e o squidguard tambem.. a maquina simplesmente não navega.. e não loga
os acesso, mesmo com o squid ativo.Escolhi a opção transparente e não transparente.. escolhendo as intefaces "LAN"..
Gustavo
-
Tente sem o squidguard e veja nos logs do squid, principalmente o cache.log.
-
desabilitei a integração, reinstalei o pacote.. e nada
segue o log no cache.log
2013/05/14 20:32:44 kid1| '/usr/local/etc/squid/errors/Portuguese/ERR_SECURE_CONNECT_FAIL': (2) No such file or directory 2013/05/14 20:32:44 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 20:32:44 kid1| '/usr/local/etc/squid/errors/Portuguese/ERR_UNSUP_HTTPVERSION': (2) No such file or directory 2013/05/14 20:32:44 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 20:32:44 kid1| '/usr/local/etc/squid/errors/Portuguese/ERR_PRECONDITION_FAILED': (2) No such file or directory 2013/05/14 20:32:44 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 20:32:44 kid1| '/usr/local/etc/squid/errors/Portuguese/ERR_CONFLICT_HOST': (2) No such file or directory 2013/05/14 20:32:44 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 20:32:44 kid1| '/usr/local/etc/squid/errors/Portuguese/ERR_ESI': (2) No such file or directory 2013/05/14 20:32:44 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 20:32:44 kid1| '/usr/local/etc/squid/errors/Portuguese/ERR_ICAP_FAILURE': (2) No such file or directory 2013/05/14 20:32:44 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 20:32:44 kid1| '/usr/local/etc/squid/errors/Portuguese/ERR_GATEWAY_FAILURE': (2) No such file or directory 2013/05/14 20:32:44 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 20:32:44 kid1| '/usr/local/etc/squid/errors/Portuguese/ERR_DIR_LISTING': (2) No such file or directory 2013/05/14 20:32:44 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 20:32:44 kid1| '/usr/local/etc/squid/errors/Portuguese/error-details.txt': (2) No such file or directory 2013/05/14 20:32:44 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 20:32:44 kid1| Logfile: opening log /var/squid/logs/access.log 2013/05/14 20:32:44 kid1| WARNING: log parameters now start with a module name. Use 'stdio:/var/squid/logs/access.log' 2013/05/14 20:32:44 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec 2013/05/14 20:32:44 kid1| Store logging disabled 2013/05/14 20:32:44 kid1| Swap maxSize 0 + 8192 KB, estimated 630 objects 2013/05/14 20:32:44 kid1| Target number of buckets: 31 2013/05/14 20:32:44 kid1| Using 8192 Store buckets 2013/05/14 20:32:44 kid1| Max Mem size: 8192 KB 2013/05/14 20:32:44 kid1| Max Swap size: 0 KB 2013/05/14 20:32:44 kid1| Using Least Load store dir selection 2013/05/14 20:32:44 kid1| Current Directory is /usr/local/www 2013/05/14 20:32:44 kid1| Loaded Icons. 2013/05/14 20:32:44 kid1| HTCP Disabled. 2013/05/14 20:32:44 kid1| WARNING: no_suid: setuid(0): (1) Operation not permitted 2013/05/14 20:32:44 kid1| sendto FD 19: (1) Operation not permitted 2013/05/14 20:32:44 kid1| ipcCreate: CHILD: hello write test failed -
Consegue interpretar o que o log esta mostrando?
Mude a linguagem do relatório.
Subi uma atualização agora a pouco para corrigir os warnings de acl para 127.0.0.1. Basta reinstalar o pacote.
-
ja mudei. e continua sem acessar.. só acessa sem passar pelo proxy..
-
ja mudei. e continua sem acessar.. só acessa sem passar pelo proxy..
E o que tem nos logs? Passe mais informações para facilitar o diagnostico.
-
2013/05/14 21:52:04 kid1| Max Mem size: 8192 KB 2013/05/14 21:52:04 kid1| Max Swap size: 0 KB 2013/05/14 21:52:04 kid1| Using Least Load store dir selection 2013/05/14 21:52:04 kid1| Current Directory is /usr/local/www 2013/05/14 21:52:04 kid1| Loaded Icons. 2013/05/14 21:52:04 kid1| HTCP Disabled. 2013/05/14 21:52:04 kid1| WARNING: no_suid: setuid(0): (1) Operation not permitted 2013/05/14 21:52:04 kid1| sendto FD 19: (1) Operation not permitted 2013/05/14 21:52:04 kid1| ipcCreate: CHILD: hello write test failedas telas
-
ps ax | grep squid
nestat -an | grep -i listen
Consegue ver o squid rodando e ouvindo na 3128?
-
esta rodando, mas não na porta, apesar que esta setado na 3128.
[2.0.3-RELEASE][admin@pfSense]/var/squid/logs(31): netstat -an | grep -i listen tcp4 0 0 *.80 *.* LISTEN tcp4 0 0 *.8080 *.* LISTEN tcp6 0 0 *.53 *.* LISTEN tcp4 0 0 *.53 *.* LISTEN tcp4 0 0 *.443 *.* LISTEN tcp4 0 0 *.22 *.* LISTEN tcp6 0 0 *.22 *.* LISTEN [2.0.3-RELEASE][admin@pfSense]/var/squid/logs(32): ps ax | grep squid 3776 ?? Is 0:00.00 /usr/local/sbin/squid -f /usr/local/etc/squid/squid.conf 4021 ?? I 0:00.08 (squid-1) -f /usr/local/etc/squid/squid.conf (squid) 25013 0 R+ 0:00.00 grep squida porta esta CLOSED..
tcp4 0 0 192.168.0.8.8080 192.168.0.3.50584 ESTABLISHED tcp4 0 0 127.0.0.1.3128 *.* CLOSED tcp4 0 0 192.168.0.8.3128 *.* CLOSED tcp4 0 52 192.168.0.8.22 192.168.0.3.59640 ESTABLISHEDcontinua apresentando erro de linguagem.. mesmo escolhendo "ingles"
2013/05/14 23:51:36 kid1| '/usr/local/etc/squid/errors/English/ERR_SECURE_CONNECT_FAIL': (2) No such file or directory 2013/05/14 23:51:36 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 23:51:36 kid1| '/usr/local/etc/squid/errors/English/ERR_UNSUP_HTTPVERSION': (2) No such file or directory 2013/05/14 23:51:36 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 23:51:36 kid1| '/usr/local/etc/squid/errors/English/ERR_PRECONDITION_FAILED': (2) No such file or directory 2013/05/14 23:51:36 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 23:51:36 kid1| '/usr/local/etc/squid/errors/English/ERR_CONFLICT_HOST': (2) No such file or directory 2013/05/14 23:51:36 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 23:51:36 kid1| '/usr/local/etc/squid/errors/English/ERR_ESI': (2) No such file or directory 2013/05/14 23:51:36 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 23:51:36 kid1| '/usr/local/etc/squid/errors/English/ERR_ICAP_FAILURE': (2) No such file or directory 2013/05/14 23:51:36 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 23:51:36 kid1| '/usr/local/etc/squid/errors/English/ERR_GATEWAY_FAILURE': (2) No such file or directory 2013/05/14 23:51:36 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 23:51:36 kid1| '/usr/local/etc/squid/errors/English/ERR_DIR_LISTING': (2) No such file or directory 2013/05/14 23:51:36 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 23:51:36 kid1| '/usr/local/etc/squid/errors/English/error-details.txt': (2) No such file or directory 2013/05/14 23:51:36 kid1| Unable to load default error language files. Reset to backups. 2013/05/14 23:51:36 kid1| Logfile: opening log /var/squid/logs/access.log 2013/05/14 23:51:36 kid1| WARNING: log parameters now start with a module name. Use 'stdio:/var/squid/logs/access.log' 2013/05/14 23:51:36 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec 2013/05/14 23:51:36 kid1| Store logging disabled 2013/05/14 23:51:36 kid1| Swap maxSize 0 + 8192 KB, estimated 630 objects 2013/05/14 23:51:36 kid1| Target number of buckets: 31 2013/05/14 23:51:36 kid1| Using 8192 Store buckets 2013/05/14 23:51:36 kid1| Max Mem size: 8192 KB 2013/05/14 23:51:36 kid1| Max Swap size: 0 KB 2013/05/14 23:51:36 kid1| Using Least Load store dir selection 2013/05/14 23:51:36 kid1| Current Directory is /usr/local/www 2013/05/14 23:51:36 kid1| Loaded Icons. 2013/05/14 23:51:36 kid1| HTCP Disabled. 2013/05/14 23:51:36 kid1| WARNING: no_suid: setuid(0): (1) Operation not permitted 2013/05/14 23:51:36 kid1| sendto FD 19: (1) Operation not permitted 2013/05/14 23:51:36 kid1| ipcCreate: CHILD: hello write test failed -
Tenta esta versão do squid compilada sem ipv6
amd64
http://e-sac.siteseguro.ws/packages/amd64/8/All/squid-3.3.4.tbzi386
http://e-sac.siteseguro.ws/packages/8/All/squid-3.3.4.tbzCom relação a linguagem do report, veja quais existem no filesystem, antes de alterar.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.