Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    NAT rule for Squid is not working

    NAT
    2
    3
    587
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      golmaal last edited by

      Again a noob question.

      I got Squid (authenticating/explicit mode with local users) and SquidGuard working on top of pfSense.

      My pfSense machine is 192.168.1.1/24; two other systems on same subnet with dynamic IP derived from a DHCP service running on Win2k8 server.

      My NAT rule is like this:

      Src Address: *
      Src Ports: *
      Destination Address: WAN net
      Destination Port: (80) HTTP
      Destination IP: 192.168.1.1
      Destination Port: 3128

      It doesn't seem to redirect the traffic to proxy. What am I doing wrong?

      I read somewhere on the forum that the pfSense/Squid machine need to be on a different subnet for such rule to work. But I believe that would be the case if Squid and pfSense are running on different machines.

      I have been fiddling with this all night and now I am at wit's end. Any help would be godsend.

      1 Reply Last reply Reply Quote 0
      • K
        kpa last edited by

        Change the destination address in your rule to 'Any'. When you're making connections from a client machine to the internet the destination address can be literally anything and your rule is not catching them now.

        1 Reply Last reply Reply Quote 0
        • G
          golmaal last edited by

          Yes finally got it working. Thanks a lot.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy