Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid Filter

    Scheduled Pinned Locked Moved pfSense Packages
    6 Posts 2 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nathanpinotti
      last edited by

      Hello everyone.

      A client of mine is getting a weird problem.
      We're using squid to filter and authenticate web traffic, everything was working fine, but, now, anyone can access any site.

      Port 80 and 443 are not allowed on "Portas_Liberadas" (Allowed_Ports)

      For english friends;
      Lan Net = net 0 (local one)
      Acesso = access
      Rede = network 1
      IP_PRIVILEGIADO = Full access
      Portas_LIBERADAS = Allowed_Ports
      Redes_LIBERADAS = Allowed_Networks
      REDE_MA = Network 2
      rules.png
      rules.png_thumb

      1 Reply Last reply Reply Quote 0
      • marcellocM
        marcelloc
        last edited by

        nathanpinotti,

        Are you using transparent proxy?

        Did you tried portuguese forum?

        att,
        Marcello Coutinho

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • N
          nathanpinotti
          last edited by

          Hello,

          I'm not using transp proxy. I have a LDAP integration.

          I've tried, but, anyone got me an answer, so, I'm trying here!

          Do you see some mistake?

          1 Reply Last reply Reply Quote 0
          • marcellocM
            marcelloc
            last edited by

            @nathanpinotti:

            I'm not using transp proxy. I have a LDAP integration.
            Do you see some mistake?

            If you have a non transparent proxy, you need to block http and https ports and force client browser to use proxy port.
            squid port 3128 must be allowed on lan rules.

            @nathanpinotti:

            I've tried, but, anyone got me an answer, so, I'm trying here!

            Can you point me the post? There are a lot of tutorials for proxy configuration there.

            Treinamentos de Elite: http://sys-squad.com

            Help a community developer! ;D

            1 Reply Last reply Reply Quote 0
            • N
              nathanpinotti
              last edited by

              Squid Port is on "Allowed_Ports" Alias.

              There's a VPN rule allowing all traffic to anywhere. Could it mess my LAN rule up?

              1 Reply Last reply Reply Quote 0
              • marcellocM
                marcelloc
                last edited by

                @nathanpinotti:

                There's a VPN rule allowing all traffic to anywhere. Could it mess my LAN rule up?

                Not at all. Lan traffic pass by lan rules and floating tab, not vpn interface.

                Treinamentos de Elite: http://sys-squad.com

                Help a community developer! ;D

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.