Problema con squidguard+squid3+pfsense 2.2.4
-
;D ;D !SOLUCIONADO !!!! ;D ;D
gracias a todos por sus aportes y conclusiones
la solucion era lo que explica "elbocha01" y "chidgear" osea cargando las blacklist y poniendo en target categorie dos dominios como whitelist funciono de maravilla y de ahi en adelante a bloquear
ahora para que el filtrado https funcione encontre la solucion indagando por internet
hay que agregar estas dos lineas en la caja de squid3 "Custom ACLS (Before_Auth)" lo siguiente:always_direct allow all
ssl_bump server-first allreinician pfsense y listo
;D ;D ;D ;D ;D ;D ;D ;D
tengo la siguiente configuracion
proxy+transparente+ssl bump+squidguard+fitrado https -
Me re alegro, mucha suerte y a bloquear :D
-
siiiii…................ gracias a todos por su aporte
tengo otro problema pero abrire otro foro porque es otro tema
-
a mi no me funciona :(
-
me paso este problema y lo logre resolver aquí la liga con los detalles
Saludos
https://forum.pfsense.org/index.php?topic=98353.0
-
saludos lem13631363
lo resolviste o sigues con el problema…...................
yo trabajo bajo vmware tengo el pfsense virtualizado y hago pasar a los clientes por el pfsense virtualizado..............si tengo que probar algo creo otra maquina virtual monto todo pruebo y despues mando a los clientes al nuevo pfsense virtualizado............. logicamente migrando configuraciones del antiguo.........................
-
ami no me funciona este es mi cache.log
2015/09/08 14:28:26 kid1| Starting Squid Cache version 3.4.10 for amd64-portbld-freebsd10.1…
2015/09/08 14:28:26 kid1| WARNING: Squid does not accept 0.0.0.0 in DNS server specifications.
2015/09/08 14:28:26 kid1| Will be using [::1] instead, assuming you meant that DNS is running on the same machine
2015/09/08 14:28:26| pinger: Initialising ICMP pinger …
2015/09/08 14:28:26| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:26| pinger: Unable to start ICMP pinger.
2015/09/08 14:28:26| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:26| pinger: Unable to start ICMPv6 pinger.
2015/09/08 14:28:26| FATAL: pinger: Unable to open any ICMP sockets.
2015/09/08 14:28:31 kid1| assertion failed: store_swapout.cc:307: "mem->swapout.sio == self"
2015/09/08 14:28:34 kid1| Starting Squid Cache version 3.4.10 for amd64-portbld-freebsd10.1...
2015/09/08 14:28:34 kid1| WARNING: Squid does not accept 0.0.0.0 in DNS server specifications.
2015/09/08 14:28:34 kid1| Will be using [::1] instead, assuming you meant that DNS is running on the same machine
2015/09/08 14:28:35| pinger: Initialising ICMP pinger …
2015/09/08 14:28:35| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:35| pinger: Unable to start ICMP pinger.
2015/09/08 14:28:35| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:35| pinger: Unable to start ICMPv6 pinger.
2015/09/08 14:28:35| FATAL: pinger: Unable to open any ICMP sockets.
2015/09/08 14:28:38 kid1| ctx: enter level 0: 'http://www.milenio.com/firmas/roberta_garza_articulo_mortis/problema-Grace_18_588121198.html'
2015/09/08 14:28:38 kid1| assertion failed: store_swapout.cc:307: "mem->swapout.sio == self"
2015/09/08 14:28:41 kid1| Starting Squid Cache version 3.4.10 for amd64-portbld-freebsd10.1...
2015/09/08 14:28:41 kid1| WARNING: Squid does not accept 0.0.0.0 in DNS server specifications.
2015/09/08 14:28:41 kid1| Will be using [::1] instead, assuming you meant that DNS is running on the same machine
2015/09/08 14:28:41| pinger: Initialising ICMP pinger …
2015/09/08 14:28:41| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:41| pinger: Unable to start ICMP pinger.
2015/09/08 14:28:41| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:41| pinger: Unable to start ICMPv6 pinger.
2015/09/08 14:28:41| FATAL: pinger: Unable to open any ICMP sockets.
2015/09/08 14:28:42 kid1| assertion failed: store_swapout.cc:307: "mem->swapout.sio == self"
2015/09/08 14:28:45 kid1| Starting Squid Cache version 3.4.10 for amd64-portbld-freebsd10.1...
2015/09/08 14:28:45 kid1| WARNING: Squid does not accept 0.0.0.0 in DNS server specifications.
2015/09/08 14:28:45 kid1| Will be using [::1] instead, assuming you meant that DNS is running on the same machine
2015/09/08 14:28:45| pinger: Initialising ICMP pinger …
2015/09/08 14:28:45| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:45| pinger: Unable to start ICMP pinger.
2015/09/08 14:28:45| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:45| pinger: Unable to start ICMPv6 pinger.
2015/09/08 14:28:45| FATAL: pinger: Unable to open any ICMP sockets.
2015/09/08 14:28:46 kid1| ctx: enter level 0: 'http://dondeestaelreten.com/positions/index.php'
2015/09/08 14:28:46 kid1| assertion failed: store_swapout.cc:307: "mem->swapout.sio == self"
2015/09/08 14:28:49 kid1| Starting Squid Cache version 3.4.10 for amd64-portbld-freebsd10.1...
2015/09/08 14:28:49 kid1| WARNING: Squid does not accept 0.0.0.0 in DNS server specifications.
2015/09/08 14:28:49 kid1| Will be using [::1] instead, assuming you meant that DNS is running on the same machine
2015/09/08 14:28:49| pinger: Initialising ICMP pinger …
2015/09/08 14:28:49| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:49| pinger: Unable to start ICMP pinger.
2015/09/08 14:28:49| icmp_sock: (1) Operation not permitted
2015/09/08 14:28:49| pinger: Unable to start ICMPv6 pinger.
2015/09/08 14:28:49| FATAL: pinger: Unable to open any ICMP sockets.
2015/09/08 14:28:51 kid1| ctx: enter level 0: 'http://api.weather.com/obs/crowdsource/v2/en_US/29.45280066948483/-113.35314941562501/26.543129697063453/-108.32141113437501.json?reportType=SkyReport,HazardReport&apiKey=6532d6454b8aa370768e63d6ba5a832e'
2015/09/08 14:28:51 kid1| assertion failed: store_swapout.cc:307: "mem->swapout.sio == self" -
Me suena que tienes mal configurado el antivirus, trata de desactivarlo y reiniciar el pfsense a ver si ya te funciona bien.
-
lo tengo desactivado
-
Revisaste tener bien configurados los DNS? Usualmente te los dá tu proveedor de internet. En caso de que no los tengas configurados, agregalos. Si tu proveedor no te los dió, puedes probar con los de google en lo que se los pides (8.8.8.8 y 8.8.4.4)