Squid, pfSense 2.4.2p1 and unable to configure SSL Filtering



  • I'm trying to configure Squid (v0.4.42_1 on pfSense 2.4.2-RELEASE-p1 (amd64)) in my lab for HTTPS proxy testing.  I have my internal Certificate Authority added to the firewall under System-> Cert Manager:

    Yet when I go to enable SSL Filtering in Squid Server, my CA never shows up here:

    Yes, I have rebooted my firewall, and still the CA will not show up.  Does the CA certificate require something specific?  Does this feature require the CA private key to be present within the defined CA in Cert Manager on the firewall?



  • You must create a Internal Certificate of Authority notice the X on your System/Certificate Manager/CAs interface?

    If the certificate is created correctly it will show a checkmark instead of X.



  • Yes, I see that X under the Internal column.  And that would make sense as the firewall needs to create the certificate for the SSL/TLS endpoint in order to filter SSL/TLS traffic.  Sorry for the confusion on my part.