Transparent proxy not working



  • Hello,
    Today, I have setup:
    Squid                  2.7.9 pkg v.4.3.6
    and
    Squid guard        1.9.14

    On my updated PfSense 2.2.4

    I configured them exactly as shown on the video https://www.youtube.com/watch?v=H-6_13P8pS8

    But I cannot browse any http, but only can browse https.

    I notice one error, that I cannot figure out if it is a bug or I am doing somthing wrong. On top of that I have no idea if it is related to my problem.

    As soon as I check mark the Transparent Proxy to enable it.
    I get an error message under the tab Auth setting.

    "The following input errors were detected:

    Authentication cannot be enabled while transparent proxy mode is enabled"

    However the Authentication method is None.

    Any clues will be appreciated?

    Cheers,



  • @ganewbie:

    Hello,
    Today, I have setup:
    Squid                  2.7.9 pkg v.4.3.6
    and
    Squid guard        1.9.14

    On my updated PfSense 2.2.4

    I configured them exactly as shown on the video https://www.youtube.com/watch?v=H-6_13P8pS8

    But I cannot browse any http, but only can browse https.

    I notice one error, that I cannot figure out if it is a bug or I am doing somthing wrong. On top of that I have no idea if it is related to my problem.

    As soon as I check mark the Transparent Proxy to enable it.
    I get an error message under the tab Auth setting.

    "The following input errors were detected:

    Authentication cannot be enabled while transparent proxy mode is enabled"

    However the Authentication method is None.

    Any clues will be appreciated?

    Cheers,

    Why used older squid version?  ;D



  • I just downloaded it from the packages available for download.
    What is the correct way to install the packages? sorry for a newbie question.
    Thanks,



  • @ganewbie:

    I just downloaded it from the packages available for download.
    What is the correct way to install the packages? sorry for a newbie question.
    Thanks,

    delete ur squid 2.7 and then choose squid3



  • I am not sure how to get the latest package, when i check under packages there is the one I have installed and nothing else.
    How do you find the latest?
    Sorry again for a newbie question.



  • The package you are looking for is labeled 'Squid3' under packages, not 'Squid'



  • @technical:

    The package you are looking for is labeled 'Squid3' under packages, not 'Squid'

    yea squid3  ;D



  • Well,
    Thanks to all for the great support, now I got squid3 working no issue however the squid-guard does not want to run.
    After searching on forums, I found out that you need to re-download the blacklist sites after each reboot. Not sure why? but in any case when I do that it works meaning, both services could show green and running under status–> Services.

    The interesting thing is when I deny for example Porn it does not do anything and you can still have access to Porn. Is there a special package or even some different approach to block or deny certain site categories?

    Thanks,



  • If you're using an appliance, then /tmp is held in RAM, and /tmp is where the blacklist files are stored.



  • @ganewbie:

    Well,
    Thanks to all for the great support, now I got squid3 working no issue however the squid-guard does not want to run.
    After searching on forums, I found out that you need to re-download the blacklist sites after each reboot. Not sure why? but in any case when I do that it works meaning, both services could show green and running under status–> Services.

    The interesting thing is when I deny for example Porn it does not do anything and you can still have access to Porn. Is there a special package or even some different approach to block or deny certain site categories?

    Thanks,

    I had the same issue on pfsense 2.2.1.  I solved the problem by putting one item into "target categories" at squidguard. Choose a name for the entrance and put one URL into the URL-List.
    Save the item and apply the changes. Download the blacklist again. After a reboot the blacklist is still active.