Squid3 - New GUI with sync, normal and reverse proxy

Panja

I would like ClamAV to work as a virusscanner for my clients.
So whne they browse and stumble upon a virus it gets blocked.

doktornotor

Well yes, then this is the package. Good luck ;)

Panja

Care to explain?
ClamAV sh*t?

CrisKolkman

Hello all,

I just installed pfSense in VirtualBox and it seems to be running fine.
I needed to install a router as pfSense because I run multiple webserver and with Squid3 I am filtering based on host which is being accessed.
Problem is that pfSense is not the first router, I have my ISP modem which also contains a router (Ziggo in Netherlands).

The way I have set it up now is like this:

sub.domain.com is being transferred to my ISP external IP.
My ISP modem is sending al port 80 traffic to the pfSense WAN interface.

Only thing what happens is that when I try to reach sub.domain.com, it is getting redirected to HTTPS and then the error that the server is taking too long to respond.
When I edit the hostfile for my local PC to point directly to the pfSense WAN interface, it is working like it should.

Hope you understand my question/problem, if not please ask.

fragged

Don't try to access local servers with their WAN/Public address from inside your network. You can make host overrides on your DNS if you must use the same URL.

CrisKolkman

@fragged:

Don't try to access local servers with their WAN/Public address from inside your network. You can make host overrides on your DNS if you must use the same URL.

I don't try to access the local server on the public IP, I added the WAN IP for the pfSense server in my hostfile to test if Squid3 is "redirecting" to the correct webserver.
The pfSense WAN interface has a local IP since my modem is the main router and handling DHCP etc.

CrisKolkman

Found the problem now, redirect is not working.

When I try to access sub.domain.com I should get redirected to sub.domain.com/web/index.html, but that is not happening.
Instead it redirects me to https://sub.domain.com which is resulting in the "Server not responding" error.

When I enter sub.domain.com/web/index.html from the outside network, it is working fine and I'm getting send to the correct webserver.

I did add the redirect in Squid3, what could be the problem?

Edit:

Depends on the browser, Chrome keeps sending me to https even when I type the whole URL like: http://sub.domain.com/web/index.html
Firefox only sends me to https when I try to go to sub.domain.com, when I enter the whole URL it works in Firefox.
In MS Edge I don't get redirected to https at all.

Above has all been tested from outside my local network.

From my inside network (sub.domain.com is also pointed to the external ISP IP) Firefox also keeps sending me to https, even when I enter the whole url.

Panja

@CrisKolkman:

Hello all,

I just installed pfSense in VirtualBox and it seems to be running fine.
I needed to install a router as pfSense because I run multiple webserver and with Squid3 I am filtering based on host which is being accessed.
Problem is that pfSense is not the first router, I have my ISP modem which also contains a router (Ziggo in Netherlands).

The way I have set it up now is like this:

sub.domain.com is being transferred to my ISP external IP.
My ISP modem is sending al port 80 traffic to the pfSense WAN interface.

Only thing what happens is that when I try to reach sub.domain.com, it is getting redirected to HTTPS and then the error that the server is taking too long to respond.
When I edit the hostfile for my local PC to point directly to the pfSense WAN interface, it is working like it should.

Hope you understand my question/problem, if not please ask.

Maybe off topic by why not put your Ziggo modem in bridge mode?
I have the same setup (Ziggo as well), my Ubee EVW3226 has been setup as bridge, so it's a "modem only".
That makes my pfSense the first router in line.

CrisKolkman

@Panja:

@CrisKolkman:

Hello all,

I just installed pfSense in VirtualBox and it seems to be running fine.
I needed to install a router as pfSense because I run multiple webserver and with Squid3 I am filtering based on host which is being accessed.
Problem is that pfSense is not the first router, I have my ISP modem which also contains a router (Ziggo in Netherlands).

The way I have set it up now is like this:

sub.domain.com is being transferred to my ISP external IP.
My ISP modem is sending al port 80 traffic to the pfSense WAN interface.

Only thing what happens is that when I try to reach sub.domain.com, it is getting redirected to HTTPS and then the error that the server is taking too long to respond.
When I edit the hostfile for my local PC to point directly to the pfSense WAN interface, it is working like it should.

Hope you understand my question/problem, if not please ask.

Maybe off topic by why not put your Ziggo modem in bridge mode?
I have the same setup (Ziggo as well), my Ubee EVW3226 has been setup as bridge, so it's a "modem only".
That makes my pfSense the first router in line.

I do know that but the setup in my house maken that quite difficult so that's not really an option.

Panja

Ok, clear and understood.  8)