Quick squid question

  • Alright, so I've got pfsense in a virtual lab and I'm playing around with it. I've been messing around with dansguardian and squid to filter content and I have a question about part of the setup.

    I have a NAT rule to redirect all http traffic to port 8080 which is where dansguardian is, this makes sense to me. What doesn't make sense is the squid configuration, and actually, I'm not even sure how squid plays into this. The guide I read had me bind squid to the loopback interface and I'm wondering what the purpose of that is?

    My understanding is that the NAT rule will forward traffic to dansguardian on port 8080, which then interacts with squid in some way on port 3128… Why is squid even in the picture here? The filtering is configured in dansguardian, not squid.

    Don't get me wrong, it all works fine, I just want to understand what is going on here.

  • Dansguardian uses squid to actually send and capture the request, and since your users aren't directly using squid, it only needs to listen on the loopback interface since Dansguardian is on the same machine.

Log in to reply