• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Squid not working after ip address change

Scheduled Pinned Locked Moved pfSense Packages
8 Posts 4 Posters 2.8k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • S
    ska303
    last edited by Aug 11, 2014, 10:25 AM

    Hi guys,
    i am just setting up a fresh install of the latest pfSense to use it as a Proxy.

    Everything used to work fine until i changed the ip of the LAN Interface from our test network to the real network.
    I can still access the pfSense WebGUI and can see that squid is still running and binded to the correct Interface.
    Still, squid won't work at all.

    What I did already:

    • Restart the squid Service several times
    • Reboot the physical Server where pfSense is running
    • Removed lightsquid and squid and installed them again.

    Is there anything I can try now to get squid working again?

    Any help is greatly appreciated.

    Thanks in advance.

    Sandro

    1 Reply Last reply Reply Quote 0
    • K
      KOM
      last edited by Aug 11, 2014, 1:27 PM

      Try uninstalling, deleting the config and install again:

      https://forum.pfsense.org/index.php?topic=78521.0

      1 Reply Last reply Reply Quote 0
      • S
        ska303
        last edited by Aug 11, 2014, 2:33 PM Aug 11, 2014, 2:23 PM

        Hi KOM,
        thanks for the quick reply.

        Unfortunately that didn't do the trick.

        I can see that I successfully deleted the Settings with the script mentioned in the thread you linked me to.
        I also made sure that all squid-related files in /var/squid and /usr/local/pkg are gone.

        Re-installed squid only (without lightsquid to make sure it doesnt conflict), but still no joy.
        Anything else I could try?

        Like, is there a way to find out, if my browser tries to communicate with the pfSense at all? Firewall logs e.g.?

        Thank you again.

        <edit>I just set up a Firewall rule that would allow any TCP traffic to my pfSense on port 3128. Now I get at least an error message.

        While trying to retrieve the URL: http://pfsense.org/ 
        
        The following error was encountered: 
        •  Access Denied.  
        Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect. 
        
        Your cache administrator is admin@localhost. 
        

        Maybe this helps to find my issue?

        Sandro</edit>

        1 Reply Last reply Reply Quote 0
        • K
          KOM
          last edited by Aug 11, 2014, 2:58 PM

          Can I assume that you have Allow users on interface checked in Services - Proxy server - General??  Squid may have gotten confused.  What happens if you add your LAN subnet to Services - Proxy server - Access Control - Allowed subnets?

          1 Reply Last reply Reply Quote 0
          • S
            ska303
            last edited by Aug 12, 2014, 11:45 AM

            Did all of that.
            Now i just did a backup of my config (excluding any squid Settings), did a factory reset and restored my config.
            Same result, Squid doesnt react at all.

            Can i just post my XML somewhere and let you have a look at it?

            Thank you.

            1 Reply Last reply Reply Quote 0
            • K
              KOM
              last edited by Aug 12, 2014, 1:13 PM

              Squid is just a caching proxy, so if you're getting access denied errors then that tells me that Squid doesn't think your subnet is allowed to access it.

              Is there anything in Status - System Logs - System - General - (filter on 'squid' at the bottom)?

              1 Reply Last reply Reply Quote 0
              • S
                Stewart
                last edited by Sep 4, 2014, 10:08 PM

                Try looking at the lines:
                http_port
                and
                acl localnet src
                in
                /usr/pbi/squid-amd64/etc/squid/squid.conf

                to see if the addresses need changing in there.

                1 Reply Last reply Reply Quote 0
                • J
                  jclarkv
                  last edited by Sep 9, 2014, 1:47 AM

                  I had been trying and failing to set up squid and squidguard when my LAN was set up to use 172.31.1.0/24.

                  I reset to factory defaults and left all at 192.168.1.0/24 and the installation went fine.

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                    This community forum collects and processes your personal information.
                    consent.not_received