Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid Proxy Server block any websites

    Scheduled Pinned Locked Moved Cache/Proxy
    6 Posts 3 Posters 545 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      makazo
      last edited by

      Hello friends, I am using Squid Proxy Server, but I cannot access some sites. There is a screenshot of my settings. Is there any way I should follow or do this?
      1.JPG 2.JPG 3.JPG

      M 1 Reply Last reply Reply Quote 0
      • M
        makazo @makazo
        last edited by

        @makazo 4.JPG

        For example, sometimes this website opens, sometimes it does not, I would be very grateful if anyone knows the solution to this.

        M perikoP 2 Replies Last reply Reply Quote 0
        • M
          makazo @makazo
          last edited by makazo

          acl splice_only src 192.168.2.2 #My PC
          acl splice_only src 192.168.3.3 #My iPhone

          acl NoSSLIntercept ssl::server_name_regex -i "/usr/local/pkg/reg.url.nobump"
          ssl_bump peek step1 all
          ssl_bump splice NoSSLIntercept
          ssl_bump splice splice_only
          ssl_bump stare step1
          ssl_bump bump step3

          5.JPG

          1 Reply Last reply Reply Quote 0
          • perikoP
            periko @makazo
            last edited by periko

            @makazo you just show the settings, the logs say?

            Do you setup squiguard?
            Do you have pfblockerng?

            We have only see 1 part of the picture, regards.

            Necesitan Soporte de Pfsense en México?/Need Pfsense Support in Mexico?
            www.bajaopensolutions.com
            https://www.facebook.com/BajaOpenSolutions
            Quieres aprender PfSense, visita mi canal de youtube:
            https://www.youtube.com/c/PedroMorenoBOS

            M 1 Reply Last reply Reply Quote 0
            • M
              makazo @periko
              last edited by makazo

              @periko Yes, when I use custom mode on a machine with squidguard installed, I do not have any problems with computers or the network, but whenever I activate splice all mode, I encounter these problems and pfblocker is not currently installed, it was installed 2-3 days ago, but I did a clean installation and did not reinstall it.

              SSL Man In the Middle Filtering "custom" mode has problems with iPhone and Android phones on the network. When in custom mode, applications such as Apple Store, Android Store and many other things do not work in custom mode.

              acl splice_it ssl::server_name .microsoft.com
              acl splice_it ssl::server_name .windowsupdate.com
              acl splice_it ssl::server_name .akamaitechnologies.com
              acl splice_it ssl::server_name .akadns.net
              acl splice_it ssl::server_name .discord.com
              acl splice_it ssl::server_name .discord.gg
              acl splice_it ssl::server_name .discord.media
              acl splice_only src 192.168.3.10 #myPhone
              acl step1 at_step SslBump1
              ssl_bump peek step1
              ssl_bump splice splice_it
              ssl_bump bump all
              ssl_bump peek step1
              ssl_bump splice all

              And finally, in splice all mode, the automatic language translation plugin on Chrome does not work in this mode.

              1 Reply Last reply Reply Quote 0
              • JonathanLeeJ
                JonathanLee
                last edited by

                Some sites you need to splice it is complex software to configure. Don't give up you got your splice list keep going...

                Make sure to upvote

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.