Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid3 crashes on 2.2.3

    Cache/Proxy
    2
    16
    5.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      pftdm007
      last edited by

      Hello fellow pfsense users,

      Here I am with another Squid issue…

      I have recently noticed that somehow, after several months, squid & squidguard have stopped filtering web content like intended.  I have looked in SG's logs and noticed the last entry was on the 16th of May (2015) which indicates that this issue has been going on for several months.

      I believe that this started to happen when I was recommended to upgrade to squid3 because I had issues with squid2 with package managers and updating my systems.

      The system logs are populated with similar entries:

      Jul 11 17:00:49 	php-fpm[65091]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:56: syntax error'
Jul 11 17:00:49 	php-fpm[65091]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 11 17:00:52 	php-fpm[65091]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:55: syntax error'
Jul 11 17:00:52 	php-fpm[65091]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.

      I have looked in the "/tmp/rules.test.package" file at lines 55 and 56 and while line 55 has this on it:

      pass in quick on  proto tcp from any to !() port {80,3128} flags S/SA keep state

      line 56 is empty.

      Whats going on?  So for now I have squid3 ands SG (latest packages from the repos) and they do not seem to be working even if the service status is "green".
      Thanks

      1 Reply Last reply Reply Quote 0
      • KOMK
        KOM
        last edited by

        Uninstall them both and then get just squid3 working.  Once you have confirmed it's doing its job, then add squidGuard to the mix.

        1 Reply Last reply Reply Quote 0
        • P
          pftdm007
          last edited by

          Okay I've uninstalled both, rebooted the firewall, check the logs to make sure everything was OK (and it was, looking at the last 500 lines of logs after the boot didn't show any errors) then I installed squid3, and immediately the logs displayed these

          
Jul 14 06:42:04 	php-fpm[43872]: /pkg_mgr_install.php: Stopping any running proxy monitors
Jul 14 06:42:05 	php-fpm[43872]: /pkg_mgr_install.php: Starting Squid
Jul 14 06:42:05 	php-fpm[43872]: /pkg_mgr_install.php: Starting a proxy monitor script
Jul 14 06:42:05 	check_reload_status: Reloading filter
Jul 14 06:42:05 	php-fpm[43872]: /pkg_mgr_install.php: [Squid] - Squid_resync function call pr: bp: rpc:no
Jul 14 06:42:06 	squid[87606]: Squid Parent: will start 1 kids
Jul 14 06:42:06 	squid[87606]: Squid Parent: (squid-1) process 88153 started
Jul 14 06:42:07 	check_reload_status: Syncing firewall
Jul 14 06:42:07 	(squid-1): I don't handle this error well!
Jul 14 06:42:07 	squid[87606]: Squid Parent: (squid-1) process 88153 exited with status 1
Jul 14 06:42:08 	php-fpm[48060]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:56: syntax error'
Jul 14 06:42:08 	php-fpm[48060]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 14 06:42:09 	php-fpm[43872]: /pkg_mgr_install.php: Reloading Squid for configuration sync
Jul 14 06:42:10 	php-fpm[43872]: /pkg_mgr_install.php: The command '/usr/pbi/squid-amd64/sbin/squid -k reconfigure -f /usr/pbi/squid-amd64/local/etc/squid/squid.conf' returned exit code '1', the output was 'squid: ERROR: No running copy'
Jul 14 06:42:10 	check_reload_status: Reloading filter
Jul 14 06:42:10 	php-fpm[48060]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:55: syntax error'
Jul 14 06:42:10 	php-fpm[48060]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 14 06:42:10 	squid[87606]: Squid Parent: (squid-1) process 7171 started
Jul 14 06:42:11 	(squid-1): Cannot open '/var/squid/logs/access.log' for writing. The parent directory must be writeable by the user 'proxy', which is the cache_effective_user set in squid.conf.
Jul 14 06:42:11 	squid[87606]: Squid Parent: (squid-1) process 7171 exited with status 1
Jul 14 06:42:11 	php-fpm[43872]: /pkg_mgr_install.php: [Squid] - Squid_resync function call pr:1 bp: rpc:no
Jul 14 06:42:13 	php-fpm[90494]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:56: syntax error'
Jul 14 06:42:13 	php-fpm[90494]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 14 06:42:14 	squid[87606]: Squid Parent: (squid-1) process 17098 started
Jul 14 06:42:14 	(squid-1): Cannot open '/var/squid/logs/access.log' for writing. The parent directory must be writeable by the user 'proxy', which is the cache_effective_user set in squid.conf.
Jul 14 06:42:14 	squid[87606]: Squid Parent: (squid-1) process 17098 exited with status 1
Jul 14 06:42:14 	php-fpm[43872]: /pkg_mgr_install.php: Reloading Squid for configuration sync
Jul 14 06:42:15 	php-fpm[43872]: /pkg_mgr_install.php: The command '/usr/pbi/squid-amd64/sbin/squid -k reconfigure -f /usr/pbi/squid-amd64/local/etc/squid/squid.conf' returned exit code '1', the output was 'squid: ERROR: No running copy'
Jul 14 06:42:15 	check_reload_status: Reloading filter
Jul 14 06:42:15 	php-fpm[90494]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:55: syntax error'
Jul 14 06:42:15 	php-fpm[90494]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 14 06:42:17 	squid[87606]: Squid Parent: (squid-1) process 28704 started
Jul 14 06:42:17 	(squid-1): Cannot open '/var/squid/logs/access.log' for writing. The parent directory must be writeable by the user 'proxy', which is the cache_effective_user set in squid.conf.
Jul 14 06:42:17 	squid[87606]: Squid Parent: (squid-1) process 28704 exited with status 1
Jul 14 06:42:17 	check_reload_status: Syncing firewall
Jul 14 06:42:17 	php-fpm[43872]: /pkg_mgr_install.php: Successfully installed package: squid3.
Jul 14 06:42:18 	check_reload_status: Reloading filter
Jul 14 06:42:20 	php-fpm[12832]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:56: syntax error'
Jul 14 06:42:20 	php-fpm[12832]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 14 06:42:20 	squid[87606]: Squid Parent: (squid-1) process 30853 started
Jul 14 06:42:20 	(squid-1): Cannot open '/var/squid/logs/access.log' for writing. The parent directory must be writeable by the user 'proxy', which is the cache_effective_user set in squid.conf.
Jul 14 06:42:20 	squid[87606]: Squid Parent: (squid-1) process 30853 exited with status 1
Jul 14 06:42:20 	squid[87606]: Squid Parent: (squid-1) process 30853 will not be restarted due to repeated, frequent failures
Jul 14 06:42:20 	squid[87606]: Exiting due to repeated, frequent failures
Jul 14 06:42:21 	php-fpm[12832]: /rc.filter_configure_sync: SQUID is installed but not started. Not installing "filter" rules.

          So maybe SG is sick, but looking at that, I'd say squid3 is dead..  This may be worthwhile to open a bug report?

          1 Reply Last reply Reply Quote 0
          • KOMK
            KOM
            last edited by

            (squid-1): Cannot open '/var/squid/logs/access.log' for writing.

            Lots of errors, including this.  What are you running pfSense on?  A PC or an appliance like an ALIX?  What is your disk storage device, and how much free space do you have on it?

            1 Reply Last reply Reply Quote 0
            • P
              pftdm007
              last edited by

              Yeah lots of errors..

              I have been running pfsense in a KVM machine under Proxmox for about 2 years now, these errors started almost right after I upgraded to squid3..

              Disk usage (from the main page):
              / (ufs): 27% of 5.8G
              /var/run (ufs in RAM): 5% of 3.4M

              $ df -H
Filesystem       Size    Used   Avail Capacity  Mounted on
/dev/vtbd0s1a    6.2G    1.5G    4.2G    27%    /
devfs            1.0k    1.0k      0B   100%    /dev
/dev/md0         3.6M    180k    3.1M     5%    /var/run
devfs            1.0k    1.0k      0B   100%    /var/dhcpd/dev

              System activity

              last pid: 44150;  load averages:  0.14,  0.13,  0.05  up 0+10:54:31    17:34:47
169 processes: 3 running, 140 sleeping, 26 waiting

Mem: 304M Active, 1583M Inact, 1334M Wired, 894M Buf, 8706M Free
Swap: 4096M Total, 4096M Free

  PID USERNAME PRI NICE   SIZE    RES STATE   C   TIME    WCPU COMMAND
   11 root     155 ki31     0K    32K CPU1    1 644:10 100.00% [idle{idle: cpu1}]
   11 root     155 ki31     0K    32K RUN     0 638:18 100.00% [idle{idle: cpu0}]
    0 root     -16    0     0K   272K swapin  1 297.8H   0.00% [kernel{swapper}]
24642 root      40   20  1027M   634M bpf     0   2:26   0.00% /usr/local/bin/snort -R 45806 -D -q --supp
    0 root       8    0     0K   272K vtbslp  0   1:51   0.00% [kernel{virtio_balloon}]
   12 root     -92    -     0K   416K WAIT    1   1:17   0.00% [intr{irq262: virtio_p}]
81900 root      20    0   253M 95812K bpf     1   1:11   0.00% /usr/local/bin/ntop -i vtnet0,vtnet2,vtnet
81900 root      20    0   253M 95812K bpf     0   1:10   0.00% /usr/local/bin/ntop -i vtnet0,vtnet2,vtnet
   12 root     -92    -     0K   416K WAIT    0   0:56   0.00% [intr{irq259: virtio_p}]
26062 root      40   20  1031M   627M bpf     1   0:40   0.00% /usr/local/bin/snort -R 58471 -D -q --supp
   14 root      -8    -     0K    48K -       1   0:33   0.00% [geom{g_up}]
   12 root     -60    -     0K   416K WAIT    0   0:27   0.00% [intr{swi4: clock}]
   12 root     -88    -     0K   416K WAIT    1   0:26   0.00% [intr{irq11: uhci0+}]
   12 root     -88    -     0K   416K WAIT    0   0:25   0.00% [intr{irq257: virtio_p}]
   20 root      16    -     0K    16K syncer  0   0:17   0.00% [syncer]
23935 root      40   20   555M   161M bpf     1   0:17   0.00% /usr/local/bin/snort -R 35358 -D -q --supp
76767 root      20    0 14656K  2456K select  0   0:15   0.00% /usr/sbin/syslogd -s -c -c -l /var/dhcpd/v
33295 clamav    20    0   371M   308M select  1   0:13   0.00% /usr/local/sbin/clamd{clamd}
              1 Reply Last reply Reply Quote 0
              • P
                pftdm007
                last edited by

                ~~Managed to get further… I changed the ownership of /var/squid to user "proxy" as the error message was suggesting, and squid3 now starts but there are still errors in the logs:

                Jul 14 18:40:13 php-fpm[66923]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
                Jul 14 18:40:13 php-fpm[66923]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:55: syntax error'
                Jul 14 18:40:10 php-fpm[66923]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
                Jul 14 18:40:10 php-fpm[66923]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:56: syntax error'
                Jul 14 18:40:08 squid[7699]: Squid Parent: (squid-1) process 8540 started
                Jul 14 18:40:08 squid[7699]: Squid Parent: will start 1 kids
                Jul 14 18:40:07 php-fpm[240]: /rc.start_packages: Starting Squid

                Not cool… not at all... I shouldnt have to manually alter permissions for packages to work!!! if Squid3 is NOT stable, please mark it so!

                Im looking into it further....~~

                EDIT:  Tried to uninstall it completely, clean /tmp then reboot the firewall and reattempt to reinstall it.  The folder /var/squid was still owned by "proxy" but for some obscure reasons, squid couldn't write to /var/squid/logs/access.log (file was non existent).  Creating it with "touch" doesnt help like the previous attempt..

                I suppose its time to reinstall pfsense fresh.  I assume the upgrades killed it somehow.  >:(

                1 Reply Last reply Reply Quote 0
                • P
                  pftdm007
                  last edited by

                  This is insane..

                  I have reinstalled pfsense FRESH (destroyed the actual VM and recreated a new one to eliminate potential FS errors, etc) and upon rebooting with the new setup and uploading my config, I tried installing squid3 but got the same exact errors!

                  I have opened a bug report on pfsense bugzilla:  https://redmine.pfsense.org/issues/4857

                  Could a setting or a package cause this??  If there's no bugs or anything wrong with this package, then what could have caused this to reoccur on a brand new install?  Even the actual ISO image was freshly downloaded from pfsense's server.

                  1 Reply Last reply Reply Quote 0
                  • KOMK
                    KOM
                    last edited by

                    When you say uploading my config, do you mean restoring from config.xml backup, or do you mean manually setting everything?  If config.xml, try reinstalling and NOT restoring your config.  Manually configure squid3 and see if the problem persists.

                    1 Reply Last reply Reply Quote 0
                    • P
                      pftdm007
                      last edited by

                      Hello KOM, sorry for the delay..

                      Yes when I meant "restore my config" I meant restore from config.xml.  That didnt work well, so I ended up exporting my settings in a plantext file and reinstalled pfsense (latest release) fresh from scratch, then spent 2 hours to reconfigure everything by hand…......

                      All worked well for about 2 days.  Squid & SG both installed and started without problems.  They also ran fine.  On the 23rd of July (a fre days ago), stuff stopped being populated in /var/squid/logs/access.log and squidguard stopped working.  At least the last entries in its logs are also from the 23rd...

                      So obviously something went wrong that day.

                      I believe SG is working (until proven otherwise) but squid is really not.

                      Not sure what to do...

                      1 Reply Last reply Reply Quote 0
                      • KOMK
                        KOM
                        last edited by

                        squidguard is a helper app that gets called on-demand by squid for every URL that gets requested.  If squid isn't working, squidguard won't work either.  Anything in either your System log or /var/squid/log/cache.log?  Anything in squidguard log?  You could also try stopping squid and then deleting his cache structure.  Then run squid -Z to recreate it.

                        1 Reply Last reply Reply Quote 0
                        • P
                          pftdm007
                          last edited by

                          Yes there are tons of errors in the system logs:

                          
Jul 30 20:57:46 	php-fpm[98311]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:57:46 	php-fpm[98311]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:45: syntax error'
Jul 30 20:57:45 	php-fpm[98311]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:57:45 	php-fpm[98311]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:46: syntax error /tmp/rules.test.packages:47: syntax error /tmp/rules.test.packages:48: syntax error'
Jul 30 20:57:44 	check_reload_status: Reloading filter
Jul 30 20:57:44 	php-fpm[29656]: /pkg_edit.php: Reloading Squid for configuration sync
Jul 30 20:57:43 	php-fpm[29656]: /pkg_edit.php: [Squid] - Squid_resync function call pr:1 bp: rpc:no
Jul 30 20:57:43 	check_reload_status: Syncing firewall
Jul 30 20:57:03 	php-fpm[29656]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:57:03 	php-fpm[29656]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:45: syntax error'
Jul 30 20:57:03 	php-fpm[29656]: /rc.filter_configure_sync: Could not find IPv6 gateway for interface (wan).
Jul 30 20:57:03 	php-fpm[29656]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:57:03 	php-fpm[29656]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:46: syntax error /tmp/rules.test.packages:47: syntax error /tmp/rules.test.packages:48: syntax error'
Jul 30 20:57:01 	check_reload_status: Reloading filter
Jul 30 20:57:01 	php-fpm[68488]: /pkg_edit.php: Reloading Squid for configuration sync
Jul 30 20:56:57 	php-fpm[29656]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:56:57 	php-fpm[29656]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:45: syntax error'
Jul 30 20:56:57 	php-fpm[29656]: /rc.filter_configure_sync: Could not find IPv6 gateway for interface (wan).
Jul 30 20:56:57 	php-fpm[29656]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:56:57 	php-fpm[29656]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:46: syntax error /tmp/rules.test.packages:47: syntax error /tmp/rules.test.packages:48: syntax error'
Jul 30 20:56:56 	php-fpm[17052]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:56:56 	php-fpm[17052]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:45: syntax error'
Jul 30 20:56:56 	php-fpm[17052]: /rc.filter_configure_sync: Could not find IPv6 gateway for interface (wan).
Jul 30 20:56:55 	php-fpm[17052]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:56:55 	php-fpm[17052]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:46: syntax error /tmp/rules.test.packages:47: syntax error /tmp/rules.test.packages:48: syntax error'
Jul 30 20:56:55 	php-fpm[68488]: /pkg_edit.php: Creating root certificate bundle hashes from the Mozilla Project
Jul 30 20:56:54 	php-fpm[68488]: /pkg_edit.php: [Squid] - Squid_resync function call pr:1 bp: rpc:no
Jul 30 20:56:54 	check_reload_status: Reloading filter
Jul 30 20:56:54 	check_reload_status: Syncing firewall
Jul 30 20:56:54 	check_reload_status: Reloading filter
Jul 30 20:56:54 	squid[14454]: Squid Parent: (squid-1) process 15057 started
Jul 30 20:56:54 	squid[14454]: Squid Parent: will start 1 kids
Jul 30 20:56:54 	php-fpm[68488]: /pkg_edit.php: Starting Squid
Jul 30 20:56:53 	php-fpm[68488]: /pkg_edit.php: [Squid] - Squid_resync function call pr: bp: rpc:no
Jul 30 20:56:09 	squid[48713]: Exiting due to repeated, frequent failures
Jul 30 20:56:09 	squid[48713]: Squid Parent: (squid-1) process 4516 will not be restarted due to repeated, frequent failures
Jul 30 20:56:09 	squid[48713]: Squid Parent: (squid-1) process 4516 exited with status 1
Jul 30 20:56:09 	(squid-1): Cannot open '/var/squid/logs/access.log' for writing. The parent directory must be writeable by the user 'proxy', which is the cache_effective_user set in squid.conf.
Jul 30 20:56:09 	squid[48713]: Squid Parent: (squid-1) process 4516 started
Jul 30 20:56:06 	squid[48713]: Squid Parent: (squid-1) process 4282 exited with status 1
Jul 30 20:56:06 	(squid-1): Cannot open '/var/squid/logs/access.log' for writing. The parent directory must be writeable by the user 'proxy', which is the cache_effective_user set in squid.conf.
Jul 30 20:56:06 	squid[48713]: Squid Parent: (squid-1) process 4282 started
Jul 30 20:56:03 	squid[48713]: Squid Parent: (squid-1) process 2249 exited with status 1
Jul 30 20:56:03 	(squid-1): Cannot open '/var/squid/logs/access.log' for writing. The parent directory must be writeable by the user 'proxy', which is the cache_effective_user set in squid.conf.
Jul 30 20:56:03 	squid[48713]: Squid Parent: (squid-1) process 2249 started
Jul 30 20:56:00 	squid[48713]: Squid Parent: (squid-1) process 85026 exited with status 1
Jul 30 20:56:00 	(squid-1): Cannot open '/var/squid/logs/access.log' for writing. The parent directory must be writeable by the user 'proxy', which is the cache_effective_user set in squid.conf.
Jul 30 20:55:59 	squid[48713]: Squid Parent: (squid-1) process 85026 started
Jul 30 20:55:58 	php-fpm[68488]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:55:58 	php-fpm[68488]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:45: syntax error'
Jul 30 20:55:57 	php-fpm[28355]: /pkg_mgr_install.php: Successfully installed package: squid3.
Jul 30 20:55:57 	check_reload_status: Syncing firewall
Jul 30 20:55:57 	php-fpm[68488]: /rc.filter_configure_sync: Could not find IPv6 gateway for interface (wan).
Jul 30 20:55:57 	php-fpm[68488]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:55:57 	php-fpm[68488]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:46: syntax error /tmp/rules.test.packages:47: syntax error /tmp/rules.test.packages:48: syntax error'
Jul 30 20:55:57 	check_reload_status: Reloading filter
Jul 30 20:55:57 	php-fpm[28355]: /pkg_mgr_install.php: The command '/usr/pbi/squid-amd64/sbin/squid -k reconfigure -f /usr/pbi/squid-amd64/local/etc/squid/squid.conf' returned exit code '1', the output was 'squid: ERROR: No running copy'
Jul 30 20:55:57 	php-fpm[28355]: /pkg_mgr_install.php: Reloading Squid for configuration sync
Jul 30 20:55:57 	php-fpm[28361]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:55:57 	php-fpm[28361]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:45: syntax error'
Jul 30 20:55:56 	php-fpm[28361]: /rc.filter_configure_sync: Could not find IPv6 gateway for interface (wan).
Jul 30 20:55:56 	squid[48713]: Squid Parent: (squid-1) process 49058 exited with status 1
Jul 30 20:55:56 	(squid-1): I don't handle this error well!
Jul 30 20:55:56 	php-fpm[28361]: /rc.filter_configure_sync: There was an error while parsing the package filter rules for /usr/local/pkg/squid.inc.
Jul 30 20:55:56 	php-fpm[28361]: /rc.filter_configure_sync: The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:46: syntax error /tmp/rules.test.packages:47: syntax error /tmp/rules.test.packages:48: syntax error'
Jul 30 20:55:56 	php-fpm[28355]: /pkg_mgr_install.php: [Squid] - Squid_resync function call pr:1 bp: rpc:no
Jul 30 20:55:56 	check_reload_status: Reloading filter
Jul 30 20:55:56 	php-fpm[28355]: /pkg_mgr_install.php: The command '/usr/pbi/squid-amd64/sbin/squid -k reconfigure -f /usr/pbi/squid-amd64/local/etc/squid/squid.conf' returned exit code '1', the output was 'squid: ERROR: No running copy'
Jul 30 20:55:56 	php-fpm[28355]: /pkg_mgr_install.php: Reloading Squid for configuration sync
Jul 30 20:55:56 	check_reload_status: Syncing firewall
Jul 30 20:55:55 	squid[48713]: Squid Parent: (squid-1) process 49058 started

                          /var/log/squid/cache.log

                          2015/07/30 20:56:54 kid1| Starting Squid Cache version 3.4.10 for amd64-portbld-freebsd10.1...
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_ACCESS_DENIED': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_CACHE_ACCESS_DENIED': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_CACHE_MGR_ACCESS_DENIED': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_FORWARDING_DENIED': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_NO_RELAY': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_CANNOT_FORWARD': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_READ_TIMEOUT': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_LIFETIME_EXP': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_READ_ERROR': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_WRITE_ERROR': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_CONNECT_FAIL': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_SECURE_CONNECT_FAIL': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_SOCKET_FAILURE': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_DNS_FAIL': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_URN_RESOLVE': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_ONLY_IF_CACHED_MISS': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_TOO_BIG': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_INVALID_RESP': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_UNSUP_HTTPVERSION': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_INVALID_REQ': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_UNSUP_REQ': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_INVALID_URL': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_ZERO_SIZE_OBJECT': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_PRECONDITION_FAILED': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_CONFLICT_HOST': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_FTP_DISABLED': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_FTP_UNAVAILABLE': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_FTP_FAILURE': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_FTP_PUT_ERROR': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_FTP_NOT_FOUND': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_FTP_FORBIDDEN': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_FTP_PUT_CREATED': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_FTP_PUT_MODIFIED': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_ESI': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_ICAP_FAILURE': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_GATEWAY_FAILURE': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_DIR_LISTING': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/ERR_SHUTTING_DOWN': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
2015/07/30 20:56:54 kid1| '/usr/local/etc/squid/errors/English/error-details.txt': (2) No such file or directory
2015/07/30 20:56:54 kid1| Unable to load default error language files. Reset to backups.
                          1 Reply Last reply Reply Quote 0
                          • KOMK
                            KOM
                            last edited by

                            Start with this:

                            The command '/sbin/pfctl -nf /tmp/rules.test.packages' returned exit code '1', the output was '/tmp/rules.test.packages:45: syntax error'

                            What's in /tmp/rules.test.packages on line 45?
                            And

                            Cannot open '/var/squid/logs/access.log' for writing. The parent directory must be writeable by the user 'proxy', which is the cache_effective_user set in squid.conf.

                            Can you check the perms on /var/squid/logs and /var/squid/logs/access.log?  Does access.log have any contents?

                            1 Reply Last reply Reply Quote 0
                            • P
                              pftdm007
                              last edited by

                              Hello KOM

                              Here's the info you asked!

                              Line 45 of  /tmp/rules.test.packages  does not exist (there are actually 44 lines in that file, 44 being the end of file EOF i.e. an empty line)

                              
$ cat  /tmp/rules.test.packages
#System aliases

loopback = "{ lo0 }"
WAN = "{ vtnet1 }"
LAN = "{ vtnet0 }"
SEG = "{ vtnet2 }"

#SSH Lockout Table
table <sshlockout>persist
table <webconfiguratorlockout>persist
#Snort tables
table <snort2c>table <virusprot>table <bogons>persist file "/etc/bogons"
table <negate_networks># User Aliases 
table <pfb_africa_v4>persist file "/var/db/aliastables/pfB_Africa_v4.txt"
pfB_Africa_v4 = "<pfb_africa_v4>"
table <pfb_africa_v6>persist file "/var/db/aliastables/pfB_Africa_v6.txt"
pfB_Africa_v6 = "<pfb_africa_v6>"
table <pfb_asia_v4>persist file "/var/db/aliastables/pfB_Asia_v4.txt"
pfB_Asia_v4 = "<pfb_asia_v4>"
table <pfb_customblockedlists>persist file "/var/db/aliastables/pfB_CustomBlockedLists.txt"
pfB_CustomBlockedLists = "<pfb_customblockedlists>"
table <allowed>{    XX.XX.XX.XX/24  XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16 } 
allowed = "<allowed>"
table <allowed_servers>{   XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16 } 
allowed_servers = "<allowed_servers>"
table <allowed_other_servers>{   XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16 } 
allowed_other_servers = "<allowed_other_servers>"
table <allowed_repomirrors>{   XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX } 
allowed_repomirrors = "<allowed_repomirrors>"
table <allowed_websites>{   XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX  XX.XX.XX.XX } 
allowed_websites = "<allowed_websites>"
table <blocked>{    XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16   XX.XX.XX.XX } 
blocked = "<blocked>"
table <blocked_sites>{   XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16  XX.XX.XX.XX/16 } 
blocked_sites = "<blocked_sites>"
table <blocked_useless>{   XX.XX.XX.XX } 
blocked_useless = "<blocked_useless>"</blocked_useless></blocked_useless></blocked_sites></blocked_sites></blocked></blocked></allowed_websites></allowed_websites></allowed_repomirrors></allowed_repomirrors></allowed_other_servers></allowed_other_servers></allowed_servers></allowed_servers></allowed></allowed></pfb_customblockedlists></pfb_customblockedlists></pfb_asia_v4></pfb_asia_v4></pfb_africa_v6></pfb_africa_v6></pfb_africa_v4></pfb_africa_v4></negate_networks></bogons></virusprot></snort2c></webconfiguratorlockout></sshlockout>

                              Perms of /var/squid/logs

                              $ ls -l /var/squid/logs
total 56
-rw-r-----  1 proxy  proxy      0 Jul 30 18:00 access.log
-rw-r-----  1 proxy  proxy  20662 Jul 30 21:08 cache.log
-rw-r--r--  1 proxy  proxy      6 Jul 30 18:13 squid.pid
-rw-r-----  1 proxy  proxy      0 Jul 30 18:13 store.log

                              Perms of /var/squid/logs/access.log

                              $ ls -l /var/squid/logs/access.log
-rw-r-----  1 proxy  proxy  0 Jul 30 18:00 /var/squid/logs/access.log

                              access.log is totally empty (0 bytes)

                              I hope this will help you…

                              1 Reply Last reply Reply Quote 0
                              • KOMK
                                KOM
                                last edited by

                                I'm wondering if that syntax error in your ruleset is crashing squid, and I wonder if it's being caused by Snort.  What other packages do you have installed?

                                1 Reply Last reply Reply Quote 0
                                • P
                                  pftdm007
                                  last edited by

                                  I didnt think of snort causing issues…  Before I uninstall snort and try squid on its own, let me answer the question about what packages are installed on my router:

                                  File Manager
                                  ntop
                                  pfBlockerNG
                                  snort
                                  squid3
                                  vnstat2

                                  Thats all!

                                  1 Reply Last reply Reply Quote 0
                                  • KOMK
                                    KOM
                                    last edited by

                                    Both pfBlockerNG and Snort inject rules into the ruleset.  You might try disabling them, if possible, and see if that has any effect.

                                    1 Reply Last reply Reply Quote 0
                                    • First post
                                      Last post
                                    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.