Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid proxy seems to work properly but never hits..

    Scheduled Pinned Locked Moved pfSense Packages
    2 Posts 2 Posters 2.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      igmrlm
      last edited by

      Hi,

      I've set up pfsense 2.0.3 x64, the April 12th build, and added squid 3.1.20 pkg 2.0.6, configured and such, everything seems to be working perfectly except there are no TCP_HITS in any of my logs..

      Any idea what I'm doing wrong?

      ++++++++++++++ Squid config file ++++++++++++++

      
      # This file is automatically generated by pfSense
      # Do not edit manually !
      http_port 192.168.1.1:3128
      http_port 127.0.0.1:3128 intercept
      icp_port 7
      dns_v4_first off
      pid_filename /var/run/squid.pid
      cache_effective_user proxy
      cache_effective_group proxy
      error_default_language en
      icon_directory /usr/local/etc/squid/icons
      visible_hostname localhost
      cache_mgr admin@localhost
      access_log /var/squid/logs/access.log
      cache_log /var/squid/logs/cache.log
      cache_store_log none
      sslcrtd_children 0
      logfile_rotate 10
      shutdown_lifetime 3 seconds
      # Allow local network(s) on interface(s)
      acl localnet src  192.168.1.0/24
      uri_whitespace strip
      
      # Break HTTP standard for flash videos. Keep them in cache even if asked not to.
      refresh_pattern -i \.flv$ 10080 90% 999999 ignore-no-cache override-expire ignore-private
      
      # Let the clients favorite video site through with full caching
      acl youtube dstdomain .youtube.com
      cache allow youtube
      
      # Windows Update refresh_pattern
      range_offset_limit -1
      refresh_pattern -i microsoft.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip) 4320 80% 43200 reload-into-ims
      refresh_pattern -i windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip) 4320 80% 43200 reload-into-ims
      refresh_pattern -i my.windowsupdate.website.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip) 4320 80% 43200 reload-into-ims
      cache_mem 512 MB
      maximum_object_size_in_memory 8096 KB
      memory_replacement_policy heap GDSF
      cache_replacement_policy heap LFUDA
      cache_dir aufs /var/squid/cache 50000 16 256
      minimum_object_size 0 KB
      maximum_object_size 16384 KB
      offline_mode offcache_swap_low 90
      cache_swap_high 95
      
      # Add any of your own refresh_pattern entries above these.
      refresh_pattern ^ftp:    1440  20%  10080
      refresh_pattern ^gopher:  1440  0%  1440
      refresh_pattern -i (/cgi-bin/|\?) 0  0%  0
      refresh_pattern .    0  20%  4320
      # No redirector configured
      
      #Remote proxies
      
      # Setup some default acls
      acl allsrc src all
      acl localhost src 127.0.0.1/32
      acl safeports port 21 70 80 210 280 443 488 563 591 631 777 901  3128 1025-65535
      acl sslports port 443 563
      acl manager proto cache_object
      acl purge method PURGE
      acl connect method CONNECT
      
      # Define protocols used for redirects
      acl HTTP proto HTTP
      acl HTTPS proto HTTPS
      
      http_access allow manager localhost
      
      http_access deny manager
      http_access allow purge localhost
      http_access deny purge
      http_access deny !safeports
      http_access deny CONNECT !sslports
      
      # Always allow localhost connections
      http_access allow localhost
      
      request_body_max_size 0 KB
      delay_pools 1
      delay_class 1 2
      delay_parameters 1 -1/-1 -1/-1
      delay_initial_bucket_level 100
      delay_access 1 allow allsrc
      
      # Reverse Proxy settings
      
      # Custom options
      
      # Setup allowed acls
      # Allow local network(s) on interface(s)
      http_access allow localnet
      # Default block all to be sure
      http_access deny allsrc
      

      ++++++++++++++ Recent log section ++++++++++++

      
      1372231049.187    523 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/stylesheets/layout.css - DIRECT/182.248.171.104 -
      1372231049.221    556 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/stylesheets/style.css - DIRECT/182.248.171.104 -
      1372231049.235    568 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/stylesheets/navigation.css - DIRECT/182.248.171.104 -
      1372231049.441    539 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/stylesheets/slide.css - DIRECT/182.248.171.104 -
      1372231049.753    564 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/stylesheets/compara.css - DIRECT/182.248.171.104 -
      1372231049.769    545 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/stylesheets/tab.css - DIRECT/182.248.171.104 -
      1372231049.967    512 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/stylesheets/productsfinder2.css - DIRECT/182.248.171.104 -
      1372231050.058   1392 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/stylesheets/global.css - DIRECT/182.248.171.104 -
      1372231050.270    516 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/stylesheets/home.css - DIRECT/182.248.171.104 -
      1372231050.288    517 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/script/script.min.js - DIRECT/182.248.171.104 -
      1372231050.492   1253 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/stylesheets/fancybox.css - DIRECT/182.248.171.104 -
      1372231050.582    522 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/script/jquery.mousewheel.pack.js - DIRECT/182.248.171.104 -
      1372231050.700   2990 192.168.1.101 TCP_MISS/200 38413 GET http://www.eizo.com/global/ - DIRECT/182.248.171.104 text/html
      1372231050.791    516 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/script/jquery.fancybox.pack.js - DIRECT/182.248.171.104 -
      1372231050.961    340 192.168.1.101 TCP_MISS/200 1635 GET http://www.google.com/cse/brand? - DIRECT/74.125.26.103 text/javascript
      1372231051.000    491 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/script/navigation.js - DIRECT/182.248.171.104 -
      1372231051.205   7796 192.168.1.101 TCP_MISS/200 1651123 GET http://r2---sn-p5qlsu7k.c.youtube.com/videoplayback? - DIRECT/74.125.214.209 text/plain
      1372231051.310   1342 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/script/jquery.min.js - DIRECT/182.248.171.104 -
      1372231051.377     29 192.168.1.101 TCP_MISS/304 266 GET http://www.google-analytics.com/ga.js - DIRECT/74.125.226.128 -
      1372231051.742    426 192.168.1.101 TCP_MISS/304 240 GET http://www.eizo.com/global/common/stylesheets/print.css - DIRECT/182.248.171.104 -
      1372231051.748    417 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/bg/header_bg.gif - DIRECT/182.248.171.104 -
      1372231051.763    447 192.168.1.101 TCP_MISS/304 241 GET http://www.eizo.com/global/common/images/btn/search.gif - DIRECT/182.248.171.104 -
      1372231051.776    447 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/top/main_bg_01.gif - DIRECT/182.248.171.104 -
      1372231051.792    460 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/header/about_eizo.gif - DIRECT/182.248.171.104 -
      1372231051.865    514 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/script/fancybox.setting.js - DIRECT/182.248.171.104 -
      1372231052.160    415 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/script/global.js - DIRECT/182.248.171.104 -
      1372231052.210    460 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/script/jquery.easing.1.3.js - DIRECT/182.248.171.104 -
      1372231052.242    477 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/script/slide_banner.js - DIRECT/182.248.171.104 -
      1372231052.268    488 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/script/side_navigation.js - DIRECT/182.248.171.104 -
      1372231052.373    580 192.168.1.101 TCP_MISS/304 241 GET http://www.eizo.com/global/common/images/arrow/arrow_header_menu.gif - DIRECT/182.248.171.104 -
      1372231052.397    531 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/header/bg_select.gif - DIRECT/182.248.171.104 -
      1372231052.584    422 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/header/global.gif - DIRECT/182.248.171.104 -
      1372231052.668    455 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/header/select_plus.gif - DIRECT/182.248.171.104 -
      1372231052.706    462 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/script/initialized.js - DIRECT/182.248.171.104 -
      1372231052.736    464 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/header/navigation.gif - DIRECT/182.248.171.104 -
      1372231052.815    440 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/main_01.jpg - DIRECT/182.248.171.104 -
      1372231052.858    456 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/main_02.jpg - DIRECT/182.248.171.104 -
      1372231053.028    443 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/main_03.jpg - DIRECT/182.248.171.104 -
      1372231053.118    446 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/main_04.jpg - DIRECT/182.248.171.104 -
      1372231053.154    445 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/main_05.jpg - DIRECT/182.248.171.104 -
      1372231053.184    444 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/script/home.js - DIRECT/182.248.171.104 -
      1372231053.246    430 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/main_06.jpg - DIRECT/182.248.171.104 -
      1372231053.334    475 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/top/btn_prev.png - DIRECT/182.248.171.104 -
      1372231053.452    422 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/top/btn_next.png - DIRECT/182.248.171.104 -
      1372231053.554    434 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/rollover_main_01.jpg - DIRECT/182.248.171.104 -
      1372231053.622    466 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/rollover_main_02.jpg - DIRECT/182.248.171.104 -
      1372231053.642    455 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/rollover_main_03.jpg - DIRECT/182.248.171.104 -
      1372231053.711    461 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/rollover_main_04.jpg - DIRECT/182.248.171.104 -
      1372231053.781    444 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/rollover_main_05.jpg - DIRECT/182.248.171.104 -
      1372231053.905    450 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/top/rollover_main_06.jpg - DIRECT/182.248.171.104 -
      1372231053.994    438 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/top/btn_01.png - DIRECT/182.248.171.104 -
      1372231054.046    423 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/top/btn_02.png - DIRECT/182.248.171.104 -
      1372231054.110    467 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/top/btn_03.png - DIRECT/182.248.171.104 -
      1372231054.151    438 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/top/btn_04.png - DIRECT/182.248.171.104 -
      1372231054.214    432 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/top/btn_05.png - DIRECT/182.248.171.104 -
      1372231054.362    456 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/top/btn_06.png - DIRECT/182.248.171.104 -
      1372231054.452    456 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/side/footer.gif - DIRECT/182.248.171.104 -
      1372231054.520    470 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/side/header.gif - DIRECT/182.248.171.104 -
      1372231054.569    457 192.168.1.101 TCP_MISS/304 241 GET http://www.eizo.com/global/common/images/icon/arrow_simple.gif - DIRECT/182.248.171.104 -
      1372231054.637    484 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/top/news.gif - DIRECT/182.248.171.104 -
      1372231054.697    478 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/icon/rss12x12.gif - DIRECT/182.248.171.104 -
      1372231054.821    457 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/top/btn_pressroom.gif - DIRECT/182.248.171.104 -
      1372231054.927    473 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/relation/eizolibrary.jpg - DIRECT/182.248.171.104 -
      1372231054.989    467 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/relation/solution.jpg - DIRECT/182.248.171.104 -
      1372231055.000     59 192.168.1.101 TCP_MISS/200 507 GET http://www.google-analytics.com/__utm.gif? - DIRECT/74.125.226.128 image/gif
      1372231055.023    453 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/relation/whitepapers.jpg - DIRECT/182.248.171.104 -
      1372231055.097    459 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/relation/video.jpg - DIRECT/182.248.171.104 -
      1372231055.185    487 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/relation/award.jpg - DIRECT/182.248.171.104 -
      1372231055.319    497 192.168.1.101 TCP_MISS/304 241 GET http://www.eizo.com/global/common/images/arrow/disc_white.gif - DIRECT/182.248.171.104 -
      1372231055.407    479 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/icon/youtube.png - DIRECT/182.248.171.104 -
      1372231055.475    484 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/icon/twitter.png - DIRECT/182.248.171.104 -
      1372231055.487    461 192.168.1.101 TCP_MISS/304 242 GET http://www.eizo.com/global/common/images/icon/facebook.png - DIRECT/182.248.171.104 -
      1372231055.554    455 192.168.1.101 TCP_MISS/304 241 GET http://www.eizo.com/global/common/images/arrow/left.gif - DIRECT/182.248.171.104 -
      1372231055.635    447 192.168.1.101 TCP_MISS/304 241 GET http://www.eizo.com/global/common/images/header/navi_header_bg.gif - DIRECT/182.248.171.104 -
      1372231055.758    437 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/header/navi_product_photo.jpg - DIRECT/182.248.171.104 -
      1372231055.860    449 192.168.1.101 TCP_MISS/304 244 GET http://www.eizo.com/global/common/images/header/navi_solution_photo.jpg - DIRECT/182.248.171.104 -
      1372231055.904    426 192.168.1.101 TCP_MISS/304 243 GET http://www.eizo.com/global/common/images/header/navi_support.gif - DIRECT/182.248.171.104 -
      1372231055.924    434 192.168.1.101 TCP_MISS/304 241 GET http://www.eizo.com/global/common/images/icon/arrow_select.gif - DIRECT/182.248.171.104 -
      1372231055.994    437 192.168.1.101 TCP_MISS/304 241 GET http://www.eizo.com/global/common/images/btn/prev.png - DIRECT/182.248.171.104 -
      1372231056.062    426 192.168.1.101 TCP_MISS/304 241 GET http://www.eizo.com/global/common/images/btn/next.png - DIRECT/182.248.171.104 -
      
      1 Reply Last reply Reply Quote 0
      • N
        NateMan
        last edited by

        I am having the same problem with i386 pfsense 2.0.3 and squid3. It appears that the proxy is working, however I only see tcp_miss. Oddly, if an image has been missed once, it is not missed again when attempting to reload.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.