Squid Breaks pfSense 1.2.2?



  • Afternoon all.

    Here's the I have, and it's reproducable.

    I have a fresh install of 1.2.2 on a Nokia IP330.  I install Squid, make it transparent, allow users, DO NOT proxy pricate address space, enable logging /var/squid/log and change it to port 80 it completely breaks pfSense.  And I mean breaks it to the point where I can't get back into the FW config.  The minute after starting squid, and then browse to other options on the page, I receive the following message (See attached for screenshot).  And that's just when I try and get into the firewall itself.  As far as I can tell, I'm screwed!  Any suggestions would be GREATLY appreciated.

    ERROR
    The requested URL could not be retrieved

    –------------------------------------------------------------------------------

    While trying to process the request:

    GET / HTTP/1.1
    Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, /
    Accept-Language: en-us
    UA-CPU: x86
    Accept-Encoding: gzip, deflate
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.5.30729; .NET CLR 3.0.30618; InfoPath.2)
    Host: 192.168.1.123
    Connection: Keep-Alive

    The following error was encountered:

    Invalid Request
    Some aspect of the HTTP Request is invalid. Possible problems:

    Missing or unknown request method
    Missing URL
    Missing HTTP Identifier (HTTP/1.0)
    Request is too large
    Content-Length missing for POST or PUT requests
    Illegal character in hostname; underscores are not allowed
    Your cache administrator is admin@localhost.


    Generated Fri, 31 Jul 2009 19:56:23 GMT by localhost (squid/2.6.STABLE21)



  • Why don't you use the default port of 3128?? The GUI uses port 80. Or you can change your GUI port to something else.



  • You know, I didn't even think of that.  I was duplicating the way our FW is setup at work, and squid  runs on port 80 there, however the gui runs on port 81.

    Forgive such an ignorant question, but what's the significant to the port of the proxy server?  I mean if its default is 3128 then why change it at all?  Does it have to do with transparancy mode?

    Thanks for the help!

    -Marty


Log in to reply