Transparent Proxy issue?
-
SquidGuard (which is different from Squid) is most certainly enabled if you're getting Access Denied errors like that. When you play with SquidGuard options, you must click Save and then Apply before your changes take effect.
-
That's what I've done save and apply!
-
It's still running if it's giving you the default SquidGuard block page. What are you actually trying to do, get SquidGuard running? Get it removed?
-
I just need to filter Internet traffic and check which sites are being accessed. Strange thing is when i enable transparent proxy it works for about a minute and then its hit and miss! Removing squid guard makes no difference!
By the way the firewall is also configured as captive portal, I have disabled that as well still same results?
Thanks
-
I'm pretty familiar with Squid and SquidGuard but not Captive Portal. First off, what versions of Squid and SquidGuard are you using? Can I see your Common ACL, Groups ACL and Target Categories screens? Is there anything in your System log?
-
apology for the late response, I was unwell, please see attached, I will get you system logs should you need it?
Thanks
 -
On the Common ACL page, click the tiny green Play button to expand your list. Is there anything there?
-
see attached, but my Squidguard is disabled so why would this be the issue for transparent proxy?
Thanks
-
I've just turned transparent proxy on, I can access google and I searched bbc news it brings the results but when I click on the bbc news link it say page cannot be displayed? its same for any other links as well?
Thanks
-
Squid by itself does not do any filtering, just caching. I suspect that you have a corrupted SquidGuard install and it's still running. Shell into your pfSense box and run:
ps -ax | grep squid
What does it output?
-
its not letting me type | ?
-
sorry found it, it was the # key that had that, see attached output.
-
Hmm, SquidGuard is not running. Are you running another content filter, like DansGuardian? This is certainly a strange one.
-
no I am not, ive been pulling my hair for weeks but cant seem to find a solution.
If it makes it easier for you, I don't mind giving you remote access over team viewer 9 ?
let me know.
Thanks
-
I'm just some random Internet guy, so giving me access to your box probably isn't good for security.
I would make a backup of your configuration and then do a reinstall. That shouldn't take very long and it may get you past a glitch.
I still cant' get past how SquidGuard is not running, but you get access denied errors that look exactly like SquidGuard's default error msg page.
You have tried with different browser or client computer to rule out an weird caching issues?
What happens if you completely uninstall SquidGuard?
-
If I uninstall it I get still the same result, so I really don't think its squid guard, I believe its an issue with transparent proxy!
Thanks
-
But like I said, Squid by itself doesn't do any filtering. None at all. It's a caching proxy and that's all.
-
ok lets take the squid guard out of equation.
so what I want is transparent proxy with lightsquid and I still get the same result?
Thanks
-
You had setup not-transparent mode first right?
Perhaps the switching to transparent mode did not complete the firewall rule changes to accommodate the squid proxy rules to redirect to the proxy-port.Does /tmp/rules.debug contain something like this?
# Setup Squid proxy redirect no rdr on em1 proto tcp from any to { 192.168.0.0/16, 172.16.0.0/12, 10.0.0.0/8 } port 80 rdr on em1 proto tcp from any to !(em1) port 80 -> 127.0.0.1 port 3128 -
correct I had not set transparent first, but it was installed as the first package out of three I have installed.
sorry im not familiar with command and im new to pfsense, how do I check the /tmp/rules.debug?
please can you explain in steps..
Thanks for all your help so far!
