Can't get squid3-dev 3.3.10 pkg 2.2.1 working
-
Did you first installed the "orphan" libraries needed by squid3-devel?
https://forum.pfsense.org/index.php?topic=66633.msg371602#msg371602
Yes, squid3-dev wouldn't even start before getting those libraries off your link.
Did you create your own Certificate Authority (CA) with pfSense? And configured for the transparent SSL interception?
Yes I have a CA created, but it is not even working with just non-SSL proxying.
-
Could you post your cache.log?
-
Simply knowing cache.log is the next place I should be looking was a huge help. I'm posting it here but this also give me something to work on myself until you or someone can post back.
This is a startup sequence in cache.log. In this startup only transparent http is enable. Transparent SSL is disabled. I'll first work on getting it working for one then the other.
2014/03/28 07:20:34 kid1| Starting Squid Cache version 3.3.10 for i386-portbld-freebsd8.3... 2014/03/28 07:20:34 kid1| Process ID 57894 2014/03/28 07:20:34 kid1| Process Roles: worker 2014/03/28 07:20:34 kid1| With 11095 file descriptors available 2014/03/28 07:20:34 kid1| Initializing IP Cache... 2014/03/28 07:20:34 kid1| DNS Socket created at [::], FD 12 2014/03/28 07:20:34 kid1| DNS Socket created at 0.0.0.0, FD 14 2014/03/28 07:20:34 kid1| Adding domain ngkacu.com from /etc/resolv.conf 2014/03/28 07:20:34 kid1| Adding nameserver 127.0.0.1 from /etc/resolv.conf 2014/03/28 07:20:34 kid1| Adding nameserver 172.22.4.5 from /etc/resolv.conf 2014/03/28 07:20:34 kid1| Adding nameserver 172.22.4.3 from /etc/resolv.conf 2014/03/28 07:20:34 kid1| WARNING! invalid error detail name: X509_V_ERR_DIFFERENT_CRL_SCOPE 2014/03/28 07:20:34 kid1| parse error while reading template file: /usr/pbi/squid-i386/etc/squid/errors/en/error-details.txt 2014/03/28 07:20:34 kid1| Unable to load default error language files. Reset to backups. 2014/03/28 07:20:34 kid1| WARNING! invalid error detail name: X509_V_ERR_DIFFERENT_CRL_SCOPE 2014/03/28 07:20:34 kid1| parse error while reading template file: /usr/pbi/squid-i386/etc/squid/errors/templates/error-details.txt 2014/03/28 07:20:34 kid1| WARNING: failed to find or read error text file error-details.txt 2014/03/28 07:20:34 kid1| WARNING! invalid error detail name: X509_V_ERR_DIFFERENT_CRL_SCOPE 2014/03/28 07:20:34 kid1| WARNING! invalid error detail name: X509_V_ERR_DIFFERENT_CRL_SCOPE 2014/03/28 07:20:34 kid1| Logfile: opening log /var/squid/logs/access.log 2014/03/28 07:20:34 kid1| WARNING: log parameters now start with a module name. Use 'stdio:/var/squid/logs/access.log' 2014/03/28 07:20:34 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec 2014/03/28 07:20:34 kid1| Store logging disabled 2014/03/28 07:20:34 kid1| Swap maxSize 0 + 8192 KB, estimated 630 objects 2014/03/28 07:20:34 kid1| Target number of buckets: 31 2014/03/28 07:20:34 kid1| Using 8192 Store buckets 2014/03/28 07:20:34 kid1| Max Mem size: 8192 KB 2014/03/28 07:20:34 kid1| Max Swap size: 0 KB 2014/03/28 07:20:34 kid1| Using Least Load store dir selection 2014/03/28 07:20:34 kid1| Current Directory is /usr/local/www 2014/03/28 07:20:34 kid1| Loaded Icons. 2014/03/28 07:20:34 kid1| HTCP Disabled. 2014/03/28 07:20:34 kid1| WARNING: no_suid: setuid(0): (1) Operation not permitted 2014/03/28 07:20:34 kid1| sendto FD 23: (1) Operation not permitted 2014/03/28 07:20:34 kid1| ipcCreate: CHILD: hello write test failed -
Did you disable the IPv6 support?
squid3-devel needs IPv6 support activated. I doesn't matter if you use IPv6 or not.
-
Did you disable the IPv6 support?
squid3-devel needs IPv6 support activated. I doesn't matter if you use IPv6 or not.
I had found a post that mentioned that and tried it…. usage testing only and it did not change anything and turned it back off again. I did not pull any logs or know about the cache.log at that time, so I just turned IPv6 back on (SLAAC mode) and started squid again. Here is the new cache.log.
2014/03/28 10:47:50 kid1| Starting Squid Cache version 3.3.10 for i386-portbld-freebsd8.3... 2014/03/28 10:47:50 kid1| Process ID 73273 2014/03/28 10:47:50 kid1| Process Roles: worker 2014/03/28 10:47:50 kid1| With 11095 file descriptors available 2014/03/28 10:47:50 kid1| Initializing IP Cache... 2014/03/28 10:47:50 kid1| DNS Socket created at [::], FD 12 2014/03/28 10:47:50 kid1| DNS Socket created at 0.0.0.0, FD 14 2014/03/28 10:47:50 kid1| Adding domain ngkacu.com from /etc/resolv.conf 2014/03/28 10:47:50 kid1| Adding nameserver 127.0.0.1 from /etc/resolv.conf 2014/03/28 10:47:50 kid1| Adding nameserver 172.22.4.5 from /etc/resolv.conf 2014/03/28 10:47:50 kid1| Adding nameserver 172.22.4.3 from /etc/resolv.conf 2014/03/28 10:47:50 kid1| WARNING! invalid error detail name: X509_V_ERR_DIFFERENT_CRL_SCOPE 2014/03/28 10:47:50 kid1| parse error while reading template file: /usr/pbi/squid-i386/etc/squid/errors/en/error-details.txt 2014/03/28 10:47:50 kid1| Unable to load default error language files. Reset to backups. 2014/03/28 10:47:50 kid1| WARNING! invalid error detail name: X509_V_ERR_DIFFERENT_CRL_SCOPE 2014/03/28 10:47:50 kid1| parse error while reading template file: /usr/pbi/squid-i386/etc/squid/errors/templates/error-details.txt 2014/03/28 10:47:50 kid1| WARNING: failed to find or read error text file error-details.txt 2014/03/28 10:47:50 kid1| WARNING! invalid error detail name: X509_V_ERR_DIFFERENT_CRL_SCOPE 2014/03/28 10:47:50 kid1| WARNING! invalid error detail name: X509_V_ERR_DIFFERENT_CRL_SCOPE 2014/03/28 10:47:50 kid1| Logfile: opening log /var/squid/logs/access.log 2014/03/28 10:47:50 kid1| WARNING: log parameters now start with a module name. Use 'stdio:/var/squid/logs/access.log' 2014/03/28 10:47:50 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec 2014/03/28 10:47:50 kid1| Store logging disabled 2014/03/28 10:47:50 kid1| Swap maxSize 0 + 8192 KB, estimated 630 objects 2014/03/28 10:47:50 kid1| Target number of buckets: 31 2014/03/28 10:47:50 kid1| Using 8192 Store buckets 2014/03/28 10:47:50 kid1| Max Mem size: 8192 KB 2014/03/28 10:47:50 kid1| Max Swap size: 0 KB 2014/03/28 10:47:50 kid1| Using Least Load store dir selection 2014/03/28 10:47:50 kid1| Current Directory is /usr/local/www 2014/03/28 10:47:50 kid1| Loaded Icons. 2014/03/28 10:47:50 kid1| HTCP Disabled. 2014/03/28 10:47:50 kid1| WARNING: no_suid: setuid(0): (1) Operation not permitted 2014/03/28 10:47:50 kid1| sendto FD 23: (1) Operation not permitted 2014/03/28 10:47:50 kid1| ipcCreate: CHILD: hello write test failed -
from the terminal
/usr/local/sbin/squid -v.
if it give you back this result
/libexec/ld-elf.so.1: Shared object "libheimntlm.so.10" not found, required by "squid"
you should run this commands from terminal
fetch -o /usr/local/lib/libasn1.so.10 http://e-sac.siteseguro.ws/pfsense/8/amd64/All/ldd/libasn1.so.10
fetch -o /usr/local/lib/libgssapi.so.10 http://e-sac.siteseguro.ws/pfsense/8/amd64/All/ldd/libgssapi.so.10
fetch -o /usr/local/lib/libheimntlm.so.10 http://e-sac.siteseguro.ws/pfsense/8/amd64/All/ldd/libheimntlm.so.10
fetch -o /usr/local/lib/libhx509.so.10 http://e-sac.siteseguro.ws/pfsense/8/amd64/All/ldd/libhx509.so.10
fetch -o /usr/local/lib/libkrb5.so.10 http://e-sac.siteseguro.ws/pfsense/8/amd64/All/ldd/libkrb5.so.10
fetch -o /usr/local/lib/libroken.so.10 http://e-sac.siteseguro.ws/pfsense/8/amd64/All/ldd/libroken.so.10then from authentication tab
enable local logging
save
from user tab
create new user “user1” with password “P@ssw0rd”.restart service
-
What you get with
netstat -an | grep 3128 -
WARNING: no_suid: setuid(0): (1) Operation not permitted seems to be only a WARNING and doesn't affect normal squid3-devel operation.
Documented at http://forum.pfsense.org/index.php?topic=74310.0 (in Spanish)
http://translate.google.com/translate?sl=es&tl=en&js=n&prev=_t&hl=en&ie=UTF-8&u=http%3A%2F%2Fforum.pfsense.org%2Findex.php%3Ftopic%3D74310.0&act=url with Chrome give as an "acceptable" translation.
-
I‘ trying squid 3.3.10 under pfSense 2.0.3 and i’m getting errors in the logs.
Squid won’t work at all… so it does not really seem cosmetic…2014/06/10 11:02:43 kid1| WARNING: failed to find or read error text file error-details.txt
2014/06/10 11:02:43 kid1| sendto FD 36: (1) Operation not permitted
2014/06/10 11:02:43 kid1| ipcCreate: CHILD: hello write test failed
2014/06/10 11:03:06 kid1| Starting Squid Cache version 3.3.10 for i386-portbld-freebsd8.3...
2014/06/10 11:03:06 kid1| parse error while reading template file: /usr/pbi/squid-i386/etc/squid/errors/de/error-details.txt
2014/06/10 11:03:06 kid1| Unable to load default error language files. Reset to backups.
2014/06/10 11:03:06 kid1| parse error while reading template file: /usr/pbi/squid-i386/etc/squid/errors/templates/error-details.txt
2014/06/10 11:03:06 kid1| WARNING: failed to find or read error text file error-details.txt
2014/06/10 11:03:06 kid1| sendto FD 31: (1) Operation not permitted
2014/06/10 11:03:06 kid1| ipcCreate: CHILD: hello write test failed
2014/06/10 11:04:03 kid1| Starting Squid Cache version 3.3.10 for i386-portbld-freebsd8.3...
2014/06/10 11:04:03 kid1| parse error while reading template file: /usr/pbi/squid-i386/etc/squid/errors/de/error-details.txt
2014/06/10 11:04:03 kid1| Unable to load default error language files. Reset to backups.
2014/06/10 11:04:03 kid1| parse error while reading template file: /usr/pbi/squid-i386/etc/squid/errors/templates/error-details.txt
2014/06/10 11:04:03 kid1| WARNING: failed to find or read error text file error-details.txt
2014/06/10 11:04:03 kid1| sendto FD 40: (1) Operation not permitted
2014/06/10 11:04:03 kid1| ipcCreate: CHILD: hello write test failed -
Exactly what I'm getting under 2.1.3 64-bit…
-
i'm running 64-bit, too…
-
Did you disable the IPv6 support?
squid3-devel needs IPv6 support activated. I doesn't matter if you use IPv6 or not.
Hello
I ran into this issue today. Disabled IPV6 support in Advanced -> Networking and squid3-dev + squidgard stopped filtering traffic (no internet on clients).
I have since re-enabled the option but it still does not work. Will restart the machine when possible.
any thoughts on why its still not working after re-enablind the option?
thanks
