Squid3 - New GUI with sync, normal and reverse proxy
-
Hi,
How do I add this list http://winhelp2002.mvps.org/hosts.txt to squid3? or do I need squidGuard ?
KR
Danieli think you need squid guard
-
Hi,
How do I add this list http://winhelp2002.mvps.org/hosts.txt to squid3? or do I need squidGuard ?
KR
Danieli think you need squid guard
Okay, have idea how? or if there are any good guide…
-
Hi,
How do I add this list http://winhelp2002.mvps.org/hosts.txt to squid3? or do I need squidGuard ?
KR
Danieli think you need squid guard
Okay, have idea how? or if there are any good guide…
I'd be VERY interested in the same feature.
-
Hi,
How do I add this list http://winhelp2002.mvps.org/hosts.txt to squid3? or do I need squidGuard ?
KR
Danieli think you need squid guard
Okay, have idea how? or if there are any good guide…
I'd be VERY interested in the same feature.
I create this list myself. It's just one (domains) big list, which I pack together with f.i. shalla or mesd.
My main OS is Arch Linux, I use a program called hosts-update see https://aur.archlinux.org/packages/hosts-update/
From the hosts file, which is basically the MVPS list, I create the 'domains' file, which can be used by squidguard.If there is interest, I could place this list (mvps only) on github.
-
Does the version on the pfsense packages ie:
beta
0.2.8
platform: 2.2contain support for HTTP/1.1 ?
We are having a problem with keep-alives that need this support.
ThanksBTW the link https://github.com/pfsense/pfsense-packages/commits/master/config/34 that is on the version number leads to a 404.
-
BTW the link https://github.com/pfsense/pfsense-packages/commits/master/config/34 that is on the version number leads to a 404.
That should probably be this one then:
https://github.com/pfsense/pfsense-packages/tree/master/config/squid3/34 -
@hackersoft:
I am still experiencing the same problem.
I've got the time last week to reinstall pfsense amd-64 and the same problem exists.
So my solution right now is to reboot pfsense everyday using CRON @ 1 am. That way pfsense will be alive the next working day.
I'm suspecting one of the packages installed is messing it up at 12 midnight so I do a cron to reboot the machine @ 1am daily.
To heimdal, you can install the CRON package then add a cron task:
0 1 * * * root /sbin/reboot
I hope the fix will be released soon.
for some wierd reason im getting this too, a look at the logs doesnt show much so its been one of those evil bugs that dont leave any traces. i did mitigate it by simply seting up a cron job that runs squid at 12.15 am …
currently i have squid, squidguard, ntopng and freeradius setup and running its just this but that is "bugging" me
-
Hello.
I need IPv6 support, so i think Squid3 is my only option.squid 3 does support IPv6, but it doesn't listen on an IPv6 address tho. So clients would need to connect to ipv4:3128. You can however in advance options add an IPv6 interface e.g http_port [xxxx.xxxx.xxxx.xxxx.xxx.xxx]:3182
How can I use IPv6 with the Reverse Proxy? I currently listen on IPv4/80 and IPv4/443 and would like to additionally listen on IPv6.
-
Interesting error, while AV is enabled while navigating to most websites (not all websites) I get TAG_NONE/500 Status error. Any suggestions?
-
How do I add this list http://winhelp2002.mvps.org/hosts.txt to squid3? or do I need squidGuard ?
Wouldn't pfBlockerNG work better in this case?
-
whats new in 0.2.9?
-
whats new in 0.2.9?
Hm , its still the same version.
Here are the build options of 0.2.9
Squid Cache: Version 3.4.10 configure options: '--with-default-user=squid' '--bindir=/usr/local/sbin' '--sbindir=/usr/local/sbin' '--datadir=/usr/local/etc/squid' '--libexecdir=/usr/local/libexec/squid' '--localstatedir=/var' '--sysconfdir=/usr/local/etc/squid' '--with-logdir=/var/log/squid' '--with-pidfile=/var/run/squid/squid.pid' '--with-swapdir=/var/squid/cache' '--enable-auth' '--enable-build-info' '--enable-loadable-modules' '--enable-removal-policies=lru heap' '--disable-epoll' '--disable-linux-netfilter' '--disable-linux-tproxy' '--disable-translation' '--disable-arch-native' '--enable-eui' '--enable-cache-digests' '--enable-delay-pools' '--enable-ecap' '--disable-esi' '--enable-follow-x-forwarded-for' '--enable-htcp' '--enable-icap-client' '--enable-icmp' '--enable-ident-lookups' '--enable-ipv6' '--enable-kqueue' '--with-large-files' '--enable-http-violations' '--without-nettle' '--enable-snmp' '--enable-ssl' '--enable-ssl-crtd' '--disable-stacktraces' '--disable-ipf-transparent' '--disable-ipfw-transparent' '--enable-pf-transparent' '--with-nat-devpf' '--disable-forw-via-db' '--enable-wccp' '--enable-wccpv2' '--enable-auth-basic=DB MSNT MSNT-multi-domain NCSA PAM POP3 RADIUS fake getpwnam LDAP NIS' '--enable-auth-digest=file' '--enable-external-acl-helpers=file_userip time_quota unix_group LDAP_group' '--enable-auth-negotiate=kerberos wrapper' '--enable-auth-ntlm=fake smb_lm' '--enable-storeio=ufs aufs diskd' '--enable-disk-io=AIO Blocking IpcIo Mmapped DiskThreads DiskDaemon' '--enable-log-daemon-helpers=file' '--enable-url-rewrite-helpers=fake' '--enable-storeid-rewrite-helpers=file' '--with-openssl=/usr' '--prefix=/usr/local' '--mandir=/usr/local/man' '--infodir=/usr/local/info/' '--build=amd64-portbld-freebsd10.1' 'build_alias=amd64-portbld-freebsd10.1' 'CC=cc' 'CFLAGS=-O2 -pipe -I/usr/local/include -I/usr/local/include -I/usr/include -fstack-protector -DLDAP_DEPRECATED -fno-strict-aliasing' 'LDFLAGS= -L/usr/local/lib -L/usr/local/lib -pthread -Wl,-rpath,/usr/lib:/usr/local/lib -L/usr/lib -fstack-protector' 'LIBS=' 'CPPFLAGS=' 'CXX=c++' 'CXXFLAGS=-O2 -pipe -I/usr/local/include -I/usr/local/include -I/usr/include -fstack-protector -DLDAP_DEPRECATED -fno-strict-aliasing -Wno-unused-private-field' 'CPP=cpp' 'PKG_CONFIG=pkgconf' --enable-ltdl-convenience -
well I updated,all went well, just had to remove the cache after the install or else i get page loading issues.
-
Hi there.
I found a "bug" / "feature" when we have IPv6.
Seems that I have to add manually the IPv6 to listen on the squid (on the integration box)Is this normal ?
-
Hi there.
I found a "bug" / "feature" when we have IPv6.
Seems that I have to add manually the IPv6 to listen on the squid (on the integration box)Is this normal ?
Yes its normal. Its been that way since squid3 was added as a package. I would say its a feature that needs to be added to the GUI. To enable it and grab the interface IP from the interfaces you select
-
I installed version 0.3.0 today and ended my life. Computers with setted proxy manually, can not load pages. I had to take out the proxy settings of the LAN and did not want to do that.
Is there any way for me to go back to version 0.2.9? :'(
hugs! -
I installed version 0.3.0 today and ended my life. Computers with setted proxy manually, can not load pages. I had to take out the proxy settings of the LAN and did not want to do that.
Is there any way for me to go back to version 0.2.9? :'(
hugs!same here
-
I installed version 0.3.0 today and ended my life. Computers with setted proxy manually, can not load pages. I had to take out the proxy settings of the LAN and did not want to do that.
Is there any way for me to go back to version 0.2.9? :'(
hugs!Did you delete the squid cache?
-
squid 0.3.0 beta
cache cleared
acl > blacklist - not working
acl > banned host adresses - not working
authentication - not workingreinstalled
transparent mode - not working
port change - not workingupdated to 0.3.1 - same sh.
-
Is there any way for me to go back to version 0.2.9? :'(
Sure. Revert these patches via System Patches:
https://github.com/doktornotor/pfsense-packages/commit/a928e6df410383d00c19318b5c20459c50249a5a
https://github.com/doktornotor/pfsense-packages/commit/3f881d1e7c55ea875017764e3c6c8522fb344b84I can assure you that reverting that will fix absolutely none of the issues you are having. Nothing changed in the Squid binaries, nothing changed in blacklists, banned hosts or anything like that, nothing changed in authentication.
P.S. For complete job, do not forget to revert https://github.com/pfsense/pfsense-packages/pull/1053 as well and chmod the pinger binary back to 0755 to get it nicely broken again.