Squid + squidguard

jbrown

pfsense 2.2.1

Awhile ago when i was on pfsense 2.1, I followed the howto article http://docs.diladele.com/administrator_guide_4_0/installation_and_removal/install_on_freebsd.html

I installed it perfectly and everything worked fine.  i then upgraded to pfsense 2.2 then later pfsense 2.2.1

the diladele was more of a test project for me.  i actually don't want to use it.  so i forgot about it…..

i want to use squid and squidguard.  it seems that when i upgraded it deleted my packages?  so i installed the squid and squidguard packages again and trying to get squidguard to run but it wont start for me.  i get this error in log....

php-fpm[61102]: /pkg_edit.php: The command '/usr/pbi/squid-amd64/sbin/squid -k reconfigure' returned exit code '1', the output was 'squid: ERROR: No running copy'

in my custom options under proxy server i must have added this to the config file or is this suppose to be here on a default install?
redirect_program /usr/pbi/squidguard-amd64/bin/squidGuard -c /usr/pbi/squidguard-amd64/etc/squidGuard/squidGuard.conf;redirector_bypass off;url_rewrite_children 5

i try to delete this but just comes back.  i also tried rm usr/pbi/squid*  to delete everything, but still comes back.

any help?  thanks!

macsheva

Delete everything in the field Proxy Server -> Custom Setting.
Squidguard remove and reinstall.

Bye ;)

KOM

Don't delete the Integration options.  They are supposed to be there.  They are added and maintained by the SquidGuard package.

Anything in your /var/squid/logs/cache.log?

SquidGuard has a known issue with a missing ldap library, but I don't know if that's what's affecting you.

jbrown

@KOM:

Anything in your /var/squid/logs/cache.log?

2014/12/16 11:10:29| logfileOpen: opening log /dev/null
2014/12/16 11:10:29| Store logging disabled
2014/12/16 11:10:29| Referer logging is disabled.
2014/12/16 11:10:29| DNS Socket created at 0.0.0.0, port 48003, FD 14
2014/12/16 11:10:29| Adding domain mygiantsteps.org from /etc/resolv.conf
2014/12/16 11:10:29| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2014/12/16 11:10:29| Adding nameserver 8.8.8.8 from /etc/resolv.conf
2014/12/16 11:10:29| Adding nameserver 8.8.4.4 from /etc/resolv.conf
2014/12/16 11:10:29| Accepting proxy HTTP connections at 172.16.1.2, port 3128, FD 15.
2014/12/16 11:10:29| Accepting transparently proxied HTTP connections at 127.0.0.1, port 3128, FD 17.
2014/12/16 11:10:29| Accepting HTCP messages on port 4827, FD 18.
2014/12/16 11:10:29| Accepting SNMP messages on port 3401, FD 19.
2014/12/16 11:10:29| WCCP Disabled.
2014/12/16 11:10:29| Loaded Icons.
2014/12/16 11:10:29| Ready to serve requests.
2014/12/16 11:14:28| parseHttpRequest: Unsupported method ''
2014/12/16 11:14:28| clientTryParseRequest: FD 155 (172.16.240.63:58409) Invalid Request
2014/12/16 11:14:28| clientTryParseRequest: FD 120 (172.16.240.63:58411) Invalid Request
2014/12/16 11:14:28| parseHttpRequest: Unsupported method ''
2014/12/16 11:14:28| clientTryParseRequest: FD 155 (172.16.240.63:58413) Invalid Request
2014/12/16 11:16:38| clientTryParseRequest: FD 484 (172.16.1.103:61640) Invalid Request
2014/12/16 11:16:41| clientTryParseRequest: FD 527 (172.16.1.103:61763) Invalid Request
2014/12/16 11:16:46| clientTryParseRequest: FD 455 (172.16.1.103:61883) Invalid Request
2014/12/16 11:18:46| Reconfiguring Squid Cache (version 2.7.STABLE9)…
2014/12/16 11:18:46| FD 15 Closing HTTP connection
2014/12/16 11:18:46| FD 17 Closing HTTP connection
2014/12/16 11:18:46| FD 18 Closing HTCP socket
2014/12/16 11:18:46| FD 19 Closing SNMP socket
2014/12/16 11:18:46| logfileClose: closing log /dev/null
2014/12/16 11:18:46| Including Configuration File: /usr/pbi/squid-amd64/etc/squid/squid.conf (depth 0)
2014/12/16 11:18:46| Cache dir '/var/squid/cache' size remains unchanged at 102400 KB
2014/12/16 11:18:46| Initialising SSL.
2014/12/16 11:18:46| logfileOpen: opening log /dev/null
2014/12/16 11:18:46| Store logging disabled
2014/12/16 11:18:46| Referer logging is disabled.
2014/12/16 11:18:46| DNS Socket created at 0.0.0.0, port 24957, FD 14
2014/12/16 11:18:46| Adding domain mygiantsteps.org from /etc/resolv.conf
2014/12/16 11:18:46| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2014/12/16 11:18:46| Adding nameserver 8.8.8.8 from /etc/resolv.conf

jbrown

I also tried deleting squid and squidguard, then installing squid3 and squidguard.  still won't start, however, i get a different error in system log…..

Mar 25 12:08:52 check_reload_status: Syncing firewall
Mar 25 12:08:52 php-fpm[60609]: /pkg_edit.php: [Squid] - Squid_resync function call pr:1 bp: rpc:no
Mar 25 12:08:55 php-fpm[60609]: /pkg_edit.php: Reloading Squid for configuration sync

KOM

Use Squid 3.  What you posted in your last post wasn't an error, just status.  How do you know it isn't working?  I find that after installing Squid3, I consistently have to reboot before it starts working for me, but it does start working and stays working through subsequent reboots.

jbrown

@KOM:

Use Squid 3.  What you posted in your last post wasn't an error, just status.  How do you know it isn't working?  I find that after installing Squid3, I consistently have to reboot before it starts working for me, but it does start working and stays working through subsequent reboots.

squidguard is the issue.  not squid.  squid starts fine.  however, i am now using squid3 and i did restart and i still cannot start squidguard.

does it have to do with diladele web safety install?

KOM

I know that the latest SquidGuard seems to not always run depending on its load.  It looks like it is stopped, but it still filters based on your rules and ACLs.  I don't trust the SquidGuard service status icon any more.  There is also a missing ldap library problem but I don't know if it affects anything other than authentication.

jbrown

I was able to get it running by going through every tab and hitting save.  I saw this in another thread on here.

thanks for you help!