Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Firewall and squid

    Firewalling
    4
    10
    2802
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sayf1987 last edited by

      please i want to block ftp in my network but the problème i have squid listen in 3128, i'm explain the user browser is configure to listen on port 3128 =>>>>>  all traffic are going in this port but in my rule i have just port ftp are 21/20.

      my english not good excuse me.

      1 Reply Last reply Reply Quote 0
      • Z
        zabidin2 last edited by

        Are want block port 21 from LAN access to outside world?

        1 Reply Last reply Reply Quote 0
        • S
          sayf1987 last edited by

          yas i want bolck FTP can use 3128 in my proxy but not 21/20

          1 Reply Last reply Reply Quote 0
          • GruensFroeschli
            GruensFroeschli last edited by

            Delete the allow all rule.
            Per default pfSense blocks everything.

            We do what we must, because we can.

            Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

            1 Reply Last reply Reply Quote 0
            • S
              sayf1987 last edited by

              where i delete all rule in wan or Lan

              1 Reply Last reply Reply Quote 0
              • GruensFroeschli
                GruensFroeschli last edited by

                The rules are always on the interface on which traffic comes in.

                –> Traffic comming in on the LAN interface --> LAN tab.
                --> Traffic comming in on the WAN interface --> WAN tab.

                We do what we must, because we can.

                Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

                1 Reply Last reply Reply Quote 0
                • S
                  sayf1987 last edited by

                  when i put ftp 20 rule it doesn't block any thing, because all traffic are going in port proxy (3128),

                  1 Reply Last reply Reply Quote 0
                  • Cry Havok
                    Cry Havok last edited by

                    Correct.  You then need to change Squid's configuration to not allow connections to FTP servers - look in the Packages forum for details on changing the ports squid will allow you to connect to.

                    1 Reply Last reply Reply Quote 0
                    • S
                      sayf1987 last edited by

                      you are right Cry Havok i'am looking in squid configuration file squif.conf and i am delete port 21 !!! that's work but i have one problème when i roboot my pfsense the file configuration squid.conf returne ftp port. do you have any idea

                      1 Reply Last reply Reply Quote 0
                      • Cry Havok
                        Cry Havok last edited by

                        Try the search function ;)  This has been discussed many times and details can be found in the forum (hint, look for squid.inc).

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post