Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Erro ao ativar o Squid

    Portuguese
    1
    1
    583
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W
      Wildson Botelho
      last edited by Wildson Botelho

      Bom dia, Sou novo no Pfsense e estou com esse problema na utilização do Squid, alguem poderia me ajudar como resolver? Utilizo a versão 2.5.2 do Pfsense
      segue abaixo o erro. Utilizo Proxy transparente cutilizando certificado "Ca"

      ERROR: Unknown TLS option SINGLE_DH_USE
      ERROR: Unknown TLS option SINGLE_ECDH_USE

      Processing Configuration File: /usr/local/etc/squid/squid.conf (depth 0)
      2022/05/24 12:49:17| Processing: http_port 10.4.3.253:3128 ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=40MB cert=/usr/local/etc/squid/serverkey.pem cafile=/usr/local/share/certs/ca-root-nss.crt capath=/usr/local/share/certs/ cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!SHA1:!MD5:!EXP:!PSK:!SRP:!DSS tls-dh=prime256v1:/etc/dh-parameters.2048 options=NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE
      2022/05/24 12:49:17| UPGRADE WARNING: 'cafile=/usr/local/share/certs/ca-root-nss.crt' is deprecated in http_port. Use 'tls-cafile=' instead.
      2022/05/24 12:49:17| ERROR: Unknown TLS option SINGLE_DH_USE
      2022/05/24 12:49:17| ERROR: Unknown TLS option SINGLE_ECDH_USE
      2022/05/24 12:49:17| Processing: http_port 127.0.0.1:3128 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=40MB cert=/usr/local/etc/squid/serverkey.pem cafile=/usr/local/share/certs/ca-root-nss.crt capath=/usr/local/share/certs/ cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!SHA1:!MD5:!EXP:!PSK:!SRP:!DSS tls-dh=prime256v1:/etc/dh-parameters.2048 options=NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE
      2022/05/24 12:49:17| Starting Authentication on port 127.0.0.1:3128
      2022/05/24 12:49:17| Disabling Authentication on port 127.0.0.1:3128 (interception enabled)
      2022/05/24 12:49:17| UPGRADE WARNING: 'cafile=/usr/local/share/certs/ca-root-nss.crt' is deprecated in http_port. Use 'tls-cafile=' instead.
      2022/05/24 12:49:18| ERROR: Unknown TLS option SINGLE_DH_USE
      2022/05/24 12:49:18| ERROR: Unknown TLS option SINGLE_ECDH_USE
      2022/05/24 12:49:18| Processing: https_port 127.0.0.1:3129 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=40MB cert=/usr/local/etc/squid/serverkey.pem cafile=/usr/local/share/certs/ca-root-nss.crt capath=/usr/local/share/certs/ cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!SHA1:!MD5:!EXP:!PSK:!SRP:!DSS tls-dh=prime256v1:/etc/dh-parameters.2048 options=NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE
      2022/05/24 12:49:18| Starting Authentication on port 127.0.0.1:3129
      2022/05/24 12:49:18| Disabling Authentication on port 127.0.0.1:3129 (interception enabled)
      2022/05/24 12:49:18| UPGRADE WARNING: 'cafile=/usr/local/share/certs/ca-root-nss.crt' is deprecated in https_port. Use 'tls-cafile=' instead.
      2022/05/24 12:49:18| ERROR: Unknown TLS option SINGLE_DH_USE
      2022/05/24 12:49:18| ERROR: Unknown TLS option SINGLE_ECDH_USE.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post