Unofficial E2guardian package for pfSense

kenrutt · Jun 28, 2018, 12:30 AM

Does anyone know why e2guardian 5 transparent setting does not work right?
When I try to enable transparent mode some web sites will not load. The browser waits awhile and then comes up with error. When I disable transparent mode and put in my own NAT redirect rules for port 80 and 443 everything works perfectly.

pfsensation · Jun 28, 2018, 1:47 AM

@kenrutt What error are you getting? Transparent proxy works perfectly for me without any issues.

kenrutt · Jun 28, 2018, 1:47 AM

@pfsensation

This site can’t be reached
www.ebay.com took too long to respond.
Try:

Checking the connection
Checking the proxy and the firewall
Running Windows Network Diagnostics
ERR_CONNECTION_TIMED_OUT

pfsensation · Jun 28, 2018, 1:50 AM

@kenrutt Are you using MITM? What authentication method do you use?

And are you using Squid?

kenrutt · Jun 28, 2018, 1:59 AM

@pfsensation
Yes I am using MITM. For Auth I have it set to ip address. And I am using the direct connect method.

pfsensation · Jun 28, 2018, 2:43 AM

@kenrutt That's weird. Does it happen to all browsers? Have you checked that your system isn't explicitly configured for the proxy too?

I guess theoretically in some cases it could make a loop.

ravegen · Jun 28, 2018, 7:56 AM

how to uninstall e2guardian that will remove all its previous configurations and setups ?

I uninstalled and reinstall the package but still the same configuration that I made was still there. I wanted to uninstall the package and clean install the package coz I want to check something.

I hope the author will reply soon.

marcelloc · Jun 28, 2018, 2:29 PM

There is no option on the package to clean/reset all config yet.

If you are an advanced user, you can clean it direct on config.xml but If you do something wrong on pfSense main config file, you can mess up your firewall.

kenrutt · Jun 28, 2018, 10:32 PM

@pfsensation
Yes I have checked the proxy settings on my system and there is no proxy settings assigned. I don't know but there must be some configuration problem somewhere, I don't know what. The weird thing is if I setup NAT and redirect port 80 & 443 things work in transparent mode without a hitch. (That is with the transparent mode unchecked in e2gaurdian.)

pfsensation · Jun 29, 2018, 7:20 AM

It's possible you have a conflict somewhere, are the any other services on the firewall using those ports?

What other NAT rules do you have in place? Sounds like when you manually add the rules, it goes on top of everything you have and takes effect as it has a higher priority.

kenrutt · Jun 30, 2018, 1:02 AM

@pfsensation
You got me on the right track. I need to test things further but for now e2guardian is running in transparent mode. I am using PFBlocker and it seems the outgoing rules were interfering. Also it seems I need to select both LAN and Loopback on the first listen interface box.

Thanks for steering me in the right direction.

pfsensation · Jun 30, 2018, 8:27 AM

@kenrutt No problem! Glad I could help, I'm using pfblocker too :)

I came across issues before with this setup as E2 Guardian and pfblocker both redirect port 80/443. Managed to solve the issues adding a bypass for the pfblocker DNSBL IP. This means that transparent proxy won't touch traffic going to that IP, and it should work as normal.

And yes, makes sure the loopback interface has the proxy enabled as the transparent rule needs it.

eneiasmg · Jul 2, 2018, 8:20 PM

Hi!
I´m trying configure "Download rate limit", but, unsucessull. I configured the limiter, applyed the mask and nothing. I checked de option Allow Users on Interface, but there is an alert below "This options must be selected to use bandwidth limit options under Groups tab", but I not find nothing about limits in Groups tab. Can someone help me?!

marcelloc · Jul 2, 2018, 8:32 PM

@eneiasmg , the per group limit is not implemented yet. I'll remove this info from this field on next update.

Are you trying the limiters with direct proxy or transparent?

eneiasmg · Jul 2, 2018, 8:48 PM

Hi, @marcelloc
I'm using direct proxy.

ravegen · Jul 3, 2018, 3:55 AM

my e2guardian -version shows '--enable-sslmitm' and not '--enable-sslmitm=yes'.

does it mean I cannot do ssl mitm ?

kenrutt · Jul 6, 2018, 1:40 AM

Does anyone know the situation with the "Content List" option under the "ACLs" tab? I can't seem to get any response from this option. Is this option not supported in v5? It had been working in v4.

ravegen · Jul 6, 2018, 1:40 AM

@kenrutt

Is latest version of e2guardian 0.5.0.4 works on you like the http and https filtering ?

kenrutt · Jul 6, 2018, 2:19 AM

@ravegen Not quite sure what you are asking.
I have latest version of e2guardian installed and http and https filtering is working great. And I am using transparent mode with MITM enabled.

ravegen · Jul 6, 2018, 2:58 AM

@kenrutt

really? http and https filtering is working on your setup ?

I too have installed the same setup. I checked the transparent mode and ssl mitm.
Previouly I used version 0.5.0.3_1 and it works on that version but on the latest version it does not work anymore.

How did you install your e2guardian package? is it thru pfsense package manager on webgui ? Is you also installed squid package or not anymore ?

My pfsense version is

2.4.3-RELEASE (amd64)
built on Mon Mar 26 18:02:04 CDT 2018
FreeBSD 11.1-RELEASE-p7
Version 2.4.3_1 is available.
Version information updated at Fri Jul 6 10:49:08 PHT 2018