Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Need Some Help From The Community On A Squid Issue

    pfSense Packages
    2
    3
    1.2k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jacob81286
      last edited by

      I am having an issue that has me stumped usually between Google and my 10+ years as an IT professional I can figure it out but with this outstanding community I figure I will just ask the question and see if anyone might have an idea how this can be done.

      -So here goes I am stationed in Germany but I enjoy content from the US and some websites such as Google and YouTube as we all know they show different content and restrict some based on the location of your IP addresses.

      I like to cache content so I have installed Squid on my pfSense 2.0.1 Install and set it up as Transparent now I have created a floating rule that says send everything on any port or protocol coming in from the Lan going to a network Alias (all google IP blocks) out my VPN to the States which works but only for SSL/HTTPS and such content not grabbed up by the transparent proxy first ie port 80 so how do I tell squid to forward this specific traffic out the VPN

      Also I am curious as to why the Loopback (lo0) interface is not an assignable interface and selectable for rules and such as many of the packages can use them as an interface but no rules can be applied…

      I know it's kinda a long post but I do appreciate your help and look forward to your comments.

      1 Reply Last reply Reply Quote 0
      • N
        Nachtfalke
        last edited by

        Not sure at all but I think you must configure the outgoing address of squid:
        http://www.squid-cache.org/Versions/v2/2.7/cfgman/tcp_outgoing_address.html

        You could try with:

        tcp_outgoing_address 127.0.0.1
        

        And the create the floating rule for this source address.

        I think this is the same behaviour as with squid + MultiWAN on the same box.
        Searching the forum for squid and MultiWAN could give you perhaps some more tips.

        1 Reply Last reply Reply Quote 0
        • J
          jacob81286
          last edited by

          No go on the http://www.squid-cache.org/Versions/v3/3.1/cfgman/tcp_outgoing_address.html using acls inside squid as they match from source –> destination ie```
          tcp_outgoing_address "VPN IP" "google acl"

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.