Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Reverse Proxy Configuration Problem

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 2 Posters 2.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      applicgs
      last edited by

      Dear All,

      I am trying to configure PFSense v.2  as a router for my small network and I have an problem with my reverse proxy configuration using squid.
      My configuration is very simple. I have two network interfaces. One public with WAN ip address and one private (c class network).
      My private network has two apache web servers and I would like to published them via WAN ip address.
      I'm having “Access Denied” from my proxy when I'm trying to access my private web server via public ip address.

      I configured squid via pfsense webgui as following:

      Configuration:
      Services -> Proxy Server-> Reverse Settings ->

      Reverse Proxy Interface: Wan

      External FQDN: firewall.example.com
      (Where firewall my WAN network interface of pfsense)

      Enable HTTP reverse mode: CHECKED

      Peer definitions:
      HOST1;192.168.1.99;80;HTTP
      HOST2;192.168.1.98;80;HTTP
      (where 192.168.1.98 & 192.168.1.99 my internal web servers www1.example.com & www2.example.com)

      URI definitions:
      URI1;www1.example.com;firewall.example.com.
      URI2;www2.example.com;firewall.example.com.
      (where www1.example.com & www2.example.com my internal web servers. Also firewall.example.com has public ip address)

      ACL definitions: HOST1;URI1

      I hope you can help me with this small issue and look forward to your answers.

      Regards,
      APPLICGS

      1 Reply Last reply Reply Quote 0
      • marcellocM
        marcelloc
        last edited by

        Squid can be used as a reverse proxy but was not designed for it.

        you can try:

        • varnish (realy fast but no so easy to configure. balance http)

        • haproxy (recently updated to latest version. balance http and https)

        • pfsenses built in load balancer(easy to configure and balance http and https)

        Sorry for not answering how reverse squid works, I really prefer one of above options.  :)

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.