Squid3 unwanted filtering



  • A little background info first:

    New to pfSense including Freebsd, but not new to squid or i had running for quite some time now.  (Centos 6.X)
    I got all install happy after installing squidguard, squid3 and other proxy related packages
    Tried configure squidguard but i realized thats not what i wanted at least not yet  (uninstalled)

    What's puzzling me is after i setup squid3 in tranperent mode and i notice my web access it getting filters for instance i cant go to google.com directly, but i can do a google search if i type i directly in the chrome browser. Do you think there is some sort of conflict squid3 and squidgaurd (even after uninstalling it). My primary goal is to have squid3 do the caching for now and worry about filtering another time once i'm satisfied.

    I also notice that once i started the squid service, web traffic on the LAN gets redirected to 3128 instantly which is fine, but when i check the firewall i don't see a redirect rule in place. Is there something i'm missing?

    Thanks in advance for the help.



  • Hi,

    check option "DNS_v4_first" on squid3 GUI and try again.

    The redirect rule fpr port 3128 is an invisible rule. It is like the default "Block any to any" rule which is always there but you do not see it.
    Example:

    1.) self configured rules
    2.) Invisible squid redirect rule
    3.) Invisible block any to any rule



  • @Nachtfalke:

    Hi,

    check option "DNS_v4_first" on squid3 GUI and try again.

    The redirect rule fpr port 3128 is an invisible rule. It is like the default "Block any to any" rule which is always there but you do not see it.
    Example:

    1.) self configured rules
    2.) Invisible squid redirect rule
    3.) Invisible block any to any rule

    Thanks for the quick response, i'll check it out when i get home.



  • Unfortunately, that did not help….  :(



  • Can you make sure to "re-save" all squid3 configs and squidguard configs.

    If you are using squid3 - did you install squid3 after squidguard? This is neccessary when running these packages on pfsense 2.0.x
    Are there any logs on system log ?

    Can you visit https sites ?



  • Actually I can only visit https site. When I fist posted squidguard was uninstalled, but I reinstalled it to check the ACL. I really wish I knew how to get around CLI haha there is some getting used too



  • Now I don't have access to the GUI. I tried killing the squid via cli but it keeps restarted.



  • Status update, i was getting a lot of I/O errors so i replaced the hard drive. Now that im thinking about it, it kinda make sense why i was only getting https and not http because it was not able to write to the drive, but thats just though. giving it another try.

    Side note should i update the base OS or is that frowned upon in these establishments  :)



  • @Mrfairweather:

    Now I don't have access to the GUI. I tried killing the squid via cli but it keeps restarted.

    There is a process called sqpmon (SQuid Proxy MONitor) that checks every minute or so to see if Squid is running. If Squid is not running it will restart it. If you really want to kill off Squid to test something, then you need to kill sqpmon first.

    @Mrfairweather:

    Side note should i update the base OS or is that frowned upon in these establishments  :)

    pfSense is tightly integrated with the underlying FreeBSD (extra patches and goodies to make things even better). You need to stick with pfSense builds.


Locked