Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid bind to CARP interface

    Scheduled Pinned Locked Moved pfSense Packages
    2 Posts 2 Posters 2.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      santanna
      last edited by

      I've installed two servers with pfSense 1.2-RC2 and using carp on the WAN and LAN interface. I installed squid package and on the config screen, it only allows me to choose to bind to the LAN, WAN and SYNC interfaces. I'll be using RADIUS authentication, so I can't use squid in transparent mode.

      There is a way to bind squid to the CARP interface? This will make my squid proxies work in high availability, since the users are going to point to the LAN CARP VIP address on the squid port.

      For now, I changed to transparent mode, and my users point to the LAN CARP VIP on port 80 and works fine, because the traffic is redirected to 127.0.0.1 on squid port.

      Without the transparent mode, squid binds to 127.0.0.1:3128 and also the LAN ip address:3128 and I need to bind to the CARP_VIP:3128.

      1 Reply Last reply Reply Quote 0
      • D
        dvserg
        last edited by

        On transparent mode squid can't access to 127.0.0.1 and without carp
        Perhaps may be create some rule for sovling this problem?

        SquidGuardDoc EN  RU Tutorial
        Localization ru_PFSense

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.