Need help with squid proxy + firewall Rules
-
So, I'm new to pfSense and I'm having some trouble settig up squid(not transparent proxy) + squidguard + webfiltering.
The proxy is working as intended, filtering web sites based on Users groups in AD. That is, only if the default rule of the firewall to alllow IPv4 traffic trhough LAN is enabled, if I disable this, than nothing works.
I created a new rule to allow LAN machines to access the firewall on port 3128 (where squid is running) and it works, but still cant access the Internet.
The problem really is: I can't figure how to create a rule to allow squid to access the internet.
-
@leao-adilson Probably missing the DNS rule?
-
@mcury My Samba 4 is setup ad my DNS server, forwarding to googles DNS, and event so, I tried ping requests to 8.8.8.8 and got timeout.
-
This is my current firewall rule set.
-
@leao-adilson said in Need help with squid proxy + firewall Rules:
only if the default rule of the firewall to alllow IPv4 traffic trhough LAN is enabled, if I disable this, than nothing works.
You need a firewall rule in LAN, allowing users to access the DNS server.
TCP/UDP 53.I tried ping requests to 8.8.8.8 and got timeout.
Ping is not TCP/UDP, you would need to allow ICMP.
-
@leao-adilson said in Need help with squid proxy + firewall Rules:
This is my current firewall rule set.
It's missing the DNS rule...
-
After insertinf the DNS rule and a reboot the internet access through the proxy is finally working. Thanks for the help.
-
@leao-adilson you are welcome