• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

squid reverse proxy troubles

Scheduled Pinned Locked Moved General pfSense Questions
2 Posts 2 Posters 335 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • B
    bobsuruncle
    last edited by Mar 17, 2023, 10:33 PM

    I'm having trouble getting the reverse proxy function to work for the squid package. Currently I get the error "Unable to forward this request at this time." when I attempt to navigate to https://sub.domain.com. However the certificate is correct and shown as valid by the browser. The below config is basic and I intend to make it more complex with more servers once I get it working. I'd appreciate any tips on how to get this working.

    Squid Config details:
    I am running 2.6.0 as a nat firewall at 192.168.0.1 and connected to a residential internet modem. I have a valid ssl certificate via letsencrypt package for sub.domain.com. I have a computer within the LAN running an http daemon at 192.168.0.49 on port 8123. I installed the squid package and enabled it. Then I configured the reverse squid proxy service with the ssl certificate, WAN interface and port 443. I provided the external fqdn as sub.domain.com and enabled https reverse proxy. All other settings are default on the squid general page. On the squid web servers page I created a single entry with IP 192.168.0.49, port 8123, protocol http, alias 'http-HASS' and configured to be 'on'. On the squid mappings page I have 1 URI entry with peer 'http-HASS' selected and a URI of '^https://sub.domain.com/.*$'.

    1 Reply Last reply Reply Quote 0
    • M
      michmoor LAYER 8 Rebel Alliance
      last edited by michmoor Mar 18, 2023, 2:23 PM Mar 18, 2023, 2:23 PM

      I would highly suggest you use HA proxy and not use Squid for anything.

      Firewall: NetGate,Palo Alto-VM,Juniper SRX
      Routing: Juniper, Arista, Cisco
      Switching: Juniper, Arista, Cisco
      Wireless: Unifi, Aruba IAP
      JNCIP,CCNP Enterprise

      1 Reply Last reply Reply Quote 0
      1 out of 2
      • First post
        1/2
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
        This community forum collects and processes your personal information.
        consent.not_received