Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Transparent Proxy'ing IPv6

    pfSense Packages
    1
    2
    1564
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      lebel last edited by

      Allo,

      I have transparent proxy working just fine for IPv4 machines sitting behind my firewall, but IPv6 aren't catched. Also, I don't see any listen on IPv6 addresses on my firewall:

      [root@CPE000db934c395-CM002624e8c9e0:cache]# netstat -an | grep 3128
tcp4       0      0 127.0.0.1.3128         *.*                    LISTEN
tcp4       0      0 10.0.2.1.3128          *.*                    LISTEN
tcp4       0      0 10.0.1.1.3128          *.*                    LISTEN
[root@CPE000db934c395-CM002624e8c9e0:cache]#

      However, on the Real Time tab, I do see IPv6 targets when the proxy is able to reach the target thru IPv6 (for example, google.com, or facebook.com) for IPv4 machines sitting behind my firewall.

      IPv6 is working just fine for all my two LANs.

      Why is it squid not listening on IPv6 firewall ports? And also, transparently proxy'ing ports targets 80 also on IPv6 machines?

      I'm running squid3.

      1 Reply Last reply Reply Quote 0
      • L
        lebel last edited by

        It seems that if I add

        http_port [2001:xx:xx:94a::1]:3128
acl localnet src 2001:xx:xx:94a::/64

        Into the Custom options on the General tab it nows listen to the ipv6 IP correctly.  However, the transparent proxying on ipv6 doesn't seem to work.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy