Sites with invalid certs redirecting to pfsense gui login



  • Occasionally I come across site that has an invalid certificate. Sometimes I do need access to these sites and so I add the exception. However, as soon as I do I am redirected to the pfsense gui login page rather than the external one. I am running squid proxy, non transparent and I am not doing any Man in the Middle filtering.  If I disable to proxy I am redirected to the correct page.

    Is there anything I can do to correct the problem without having to disable the proxy? Also, what might be causing the issue?



  • Are you using squiguard too? maybe it's trying to show sgerror.php under https.



  • @marcelloc:

    Are you using squiguard too? maybe it's trying to show sgerror.php under https.

    I am using squidGuard as well.  My from my understanding you cannot redirect https connections to sgerror.php, only http, unless you are doing some MIT filtering.  This is confirmed as when block yahoo.com and browse to http://www.yahoo.com, I receive the sgerror.php page and when I browse to https://www.yahoo.com, I receive the traditional browser error, "Unable to connect, can’t establish a connection to the server at www.yahoo.com"



  • I know this. The point is that squidguard is buggy and have some know issues reporting erros from https sites like http://https:// redirect.


Log in to reply