Unofficial E2guardian package for pfSense
-
Looks like E2Guardian v5.1 is in the works!!
- Still getting used to this new forum layout... D:
-
This post is deleted! -
Version 0.5.4 uses 5.1 binaries and fixes the missing transparent forward rules after pfSense restart.
-
how can I put or where can I put ACL SSLPorts and ACL SafePorts for Allowed Ports ?
-
Does anyone know why e2guardian 5 transparent setting does not work right?
When I try to enable transparent mode some web sites will not load. The browser waits awhile and then comes up with error. When I disable transparent mode and put in my own NAT redirect rules for port 80 and 443 everything works perfectly. -
@kenrutt What error are you getting? Transparent proxy works perfectly for me without any issues.
-
This site can’t be reached
www.ebay.com took too long to respond.
Try:Checking the connection
Checking the proxy and the firewall
Running Windows Network Diagnostics
ERR_CONNECTION_TIMED_OUT -
@kenrutt Are you using MITM? What authentication method do you use?
And are you using Squid?
-
@pfsensation
Yes I am using MITM. For Auth I have it set to ip address. And I am using the direct connect method. -
@kenrutt That's weird. Does it happen to all browsers? Have you checked that your system isn't explicitly configured for the proxy too?
I guess theoretically in some cases it could make a loop.
-
how to uninstall e2guardian that will remove all its previous configurations and setups ?
I uninstalled and reinstall the package but still the same configuration that I made was still there. I wanted to uninstall the package and clean install the package coz I want to check something.
I hope the author will reply soon.
-
There is no option on the package to clean/reset all config yet.
If you are an advanced user, you can clean it direct on config.xml but If you do something wrong on pfSense main config file, you can mess up your firewall.
-
@pfsensation
Yes I have checked the proxy settings on my system and there is no proxy settings assigned. I don't know but there must be some configuration problem somewhere, I don't know what. The weird thing is if I setup NAT and redirect port 80 & 443 things work in transparent mode without a hitch. (That is with the transparent mode unchecked in e2gaurdian.) -
It's possible you have a conflict somewhere, are the any other services on the firewall using those ports?
What other NAT rules do you have in place? Sounds like when you manually add the rules, it goes on top of everything you have and takes effect as it has a higher priority.
-
@pfsensation
You got me on the right track. I need to test things further but for now e2guardian is running in transparent mode. I am using PFBlocker and it seems the outgoing rules were interfering. Also it seems I need to select both LAN and Loopback on the first listen interface box.Thanks for steering me in the right direction.
-
@kenrutt No problem! Glad I could help, I'm using pfblocker too :)
I came across issues before with this setup as E2 Guardian and pfblocker both redirect port 80/443. Managed to solve the issues adding a bypass for the pfblocker DNSBL IP. This means that transparent proxy won't touch traffic going to that IP, and it should work as normal.
And yes, makes sure the loopback interface has the proxy enabled as the transparent rule needs it.
-
Hi!
I´m trying configure "Download rate limit", but, unsucessull. I configured the limiter, applyed the mask and nothing. I checked de option Allow Users on Interface, but there is an alert below "This options must be selected to use bandwidth limit options under Groups tab", but I not find nothing about limits in Groups tab. Can someone help me?! -
@eneiasmg , the per group limit is not implemented yet. I'll remove this info from this field on next update.
Are you trying the limiters with direct proxy or transparent?
-
Hi, @marcelloc
I'm using direct proxy. -
my e2guardian -version shows '--enable-sslmitm' and not '--enable-sslmitm=yes'.
does it mean I cannot do ssl mitm ?
