Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Starting proxy server external ip ?

    Scheduled Pinned Locked Moved Routing and Multi WAN
    12 Posts 2 Posters 3.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bmironb
      last edited by

      Hi,

      What are packages that i have to install to start a proxy server running on pfsense 2.0.1 based on pc platform ?
      I want to use external ip or a dynamic dns as proxy server in internet explorer on port 21 where i want to bypass local firewall  !
      I don't want this proxy server on lan interface i want to work for 'outside/external'.
      Is this possible ? if someone know please help with some indications and settings for proxy server to run as i mentioned above with external ip.

      Thanks !

      1 Reply Last reply Reply Quote 0
      • marcellocM
        marcelloc
        last edited by

        Just install any proxy server (HAVP,squid) on pfsense and configure it to listen on port 21.

        To restrict it to your ip, create a firewall rule to allow only your ip.

        Depending on how your current firewall filter port 21, you will get a ftp proxy.

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • B
          bmironb
          last edited by

          firewall rule from wan is to allow (pass) everything
          ''create a firewall rule to allow only your ip'' what do you mean by this ? my exterior ip

          1 Reply Last reply Reply Quote 0
          • marcellocM
            marcelloc
            last edited by

            @bmironb:

            firewall rule from wan is to allow (pass) everything
            ''create a firewall rule to allow only your ip'' what do you mean by this ? my exterior ip

            If you do not want to be blacklisted as a open proxy, you need to close your firewall rules to allow only you to connect to it.

            Treinamentos de Elite: http://sys-squad.com

            Help a community developer! ;D

            1 Reply Last reply Reply Quote 0
            • B
              bmironb
              last edited by

              can you help me in web gui or in ssh to set it properly ? with acess…thanks

              1 Reply Last reply Reply Quote 0
              • B
                bmironb
                last edited by

                hi,
                thanks for help ! it's working now very good !
                but i still wondering how this traffic is framed were i set my ext ip as proxy on port 21 ?

                thanks !

                1 Reply Last reply Reply Quote 0
                • B
                  bmironb
                  last edited by

                  ERROR
                  The requested URL could not be retrieved

                  –------------------------------------------------------------------------------

                  The following error was encountered while trying to retrieve the URL: http://www.google.it/

                  Access Denied.

                  Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect.

                  Your cache administrator is admin@localhost.

                  Now i'm getting this mesage when i try to connect

                  1 Reply Last reply Reply Quote 0
                  • marcellocM
                    marcelloc
                    last edited by

                    Include your ip on squid access list.

                    Treinamentos de Elite: http://sys-squad.com

                    Help a community developer! ;D

                    1 Reply Last reply Reply Quote 0
                    • B
                      bmironb
                      last edited by

                      in unrestricted  ip's or where ?
                      regards

                      1 Reply Last reply Reply Quote 0
                      • marcellocM
                        marcelloc
                        last edited by

                        @bmironb:

                        in unrestricted  ip's or where ?
                        regards

                        Yes.

                        Enter each unrestricted IP address on a new line that is not to be filtered out by the other access control directives set in this page.

                        Treinamentos de Elite: http://sys-squad.com

                        Help a community developer! ;D

                        1 Reply Last reply Reply Quote 0
                        • B
                          bmironb
                          last edited by

                          ok it's working
                          i'm wondering how this traffic is framed ? where i m using this proxy that i created
                          thanks

                          1 Reply Last reply Reply Quote 0
                          • B
                            bmironb
                            last edited by

                            now it's ok !

                            but how can i make this proxy server secure ? i mean where i'm using this proxy to be less traceable my ip/eterior ? how to set up instead of http , to work with https ? packages to be less traceable and traffic also (traffic from exterior ip-that is add in unrestricted ip in squid / and my ip) ? i mean instead (adding proxy in lan proxy settings at http ) http to be add at secure ?

                            also i can enter in pfsense from exterior ip how can i disable that , but proxy server also working and connect to it from outside on port 21?

                            Thanks for your help !!!

                            1 Reply Last reply Reply Quote 0
                            • First post
                              Last post
                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.