Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid as reverse proxy

    Scheduled Pinned Locked Moved pfSense Packages
    4 Posts 3 Posters 3.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      flic
      last edited by

      Hi.

      I'd like to run Squid as a reverse proxy for multiple webservers on my LAN. The configuration was easy, I'd just added  httpd_accel_single_host off, changed the http_access rules in /usr/local/etc/squid.conf and created a firewall rule that NATs all incoming HTTP traffic to port 3128 on the local LAN interface.

      The problem is that pfSense (or Squid) seems to remove my changes to squid.conf at every reboot! I tried write-protecting the file, but that didn't help. Is there anyting else I can do to stop it from removing my changes?

      Regards,

      Flic

      1 Reply Last reply Reply Quote 0
      • H
        hoba
        last edited by

        conf-files are generated from the config.xml on reboot and on changes inthe webgui. You could store your modified files somewhere on the pfsense and copy them over the generated ones after reboot with a hidden config.xml option maybe: http://faq.pfsense.com/index.php?action=artikel&cat=10&id=38&artlang=en&highlight=hidden
        Make sure to reload the services after replacing the conf files and don'T touch the webgui any more ;-)

        Or have a look at the squid package and try to add some gui elements for that function and commit it back. This would be the cleaner attempt.

        1 Reply Last reply Reply Quote 0
        • F
          flic
          last edited by

          Thanks, I'll take a look at that!

          1 Reply Last reply Reply Quote 0
          • L
            lsf
            last edited by

            You should really take a look at this: http://varnish.linpro.no/

            -lsf

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.