Squid on Multi WAN setup ?
-
Hi, I struggle to get Squid working on my Setup.
I got 2 LAN Adapters and one WAN.
I'm running 3 VPN Connections on pfsense as well, so this makes 4 WAN's. I guess this is what puzzels me and breaks squid ?I tried Transparent Mode and even used squid as Proxy in Firefox, but I can't open any webpage as soon as I enable Transparent Mode or when I set squid as my proxy.
No error page, just a timeout. Nothing in the realtime log.I'm on 2.3.0_1
Any advice or guides ?
-
I got 2 LAN Adapters and one WAN.
I'm running 3 VPN Connections on pfsense as well, so this makes 4 WAN's. I guess this is what puzzels me and breaks squid ?In my opinion you have only one WAN port and two LAN ports not more but also not less too.
-
Hi,
Just a brief note, you probably know this already but Squid uses the default Gateway. Since you only have 1 WAN this should not be the problem.
Greets,
Jeff -
Just a brief note, you probably know this already but Squid uses the default Gateway.
I wasn't aware about this… Thanks for letting me know
@BlueKobold:
I got 2 LAN Adapters and one WAN.
I'm running 3 VPN Connections on pfsense as well, so this makes 4 WAN's. I guess this is what puzzels me and breaks squid ?In my opinion you have only one WAN port and two LAN ports not more but also not less too.
True, but I currently got 8 Interfaces.. which can all be WAN's
-
@Satras:
Just a brief note, you probably know this already but Squid uses the default Gateway.
I wasn't aware about this… Thanks for letting me know
Playing around with the Gateway did not help.
Not sure what else I need to configure. Don't even know how to trace this .. -
Just realized that the Service was not started. When I try to start it I got the following
May 15 10:12:07 squid ERROR: Invalid ACL: acl password proxy_auth REQUIRED May 15 10:12:07 Squid_Alarm 56347 Attempting restart... May 15 10:12:07 Squid_Alarm 55879 Squid has exited. Reconfiguring filter. May 15 10:12:04 xinetd 21386 Reconfigured: new=0 old=1 dropped=0 (services) May 15 10:12:04 xinetd 21386 readjusting service 6969-udp May 15 10:12:04 xinetd 21386 Swapping defaults May 15 10:12:04 xinetd 21386 Starting reconfiguration May 15 10:12:03 check_reload_status Reloading filter May 15 10:12:02 php-fpm 55695 /pkg_edit.php: [squid] Starting a proxy monitor script May 15 10:11:52 php-fpm 55695 /pkg_edit.php: The command '/usr/local/sbin/squid -f /usr/local/etc/squid/squid.conf' returned exit code '1', the output was '2016/05/15 10:11:52| Can't use proxy auth because no authentication schemes are fully configured. FATAL: ERROR: Invalid ACL: acl password proxy_auth REQUIRED Squid Cache (Version 3.5.16): Terminated abnormally. CPU Usage: 0.019 seconds = 0.013 user + 0.006 sys Maximum Resident Size: 48096 KB Page faults with physical i/o: 0' May 15 10:11:52 squid ERROR: Invalid ACL: acl password proxy_auth REQUIRED May 15 10:11:51 php-fpm 55695 /pkg_edit.php: [squid] Starting service...Edit:
Seems to be a bug ?I did fix this by setting the Authentication to Local and then back to none
One last question, is the default Gateway the only way to configure which Gateway the proxy uses ? No Gateway Groups or so ?