Kim, I presume that you are running squid on the pfsense box itself.
Are you sure that the automatically-generated rdr and filter rules for squid are not overridden by your custom rules? Posting your nat and filter rules (output of pfctl -s nat and pfctl -s rules) here would help mindful of security implications. Miles --- "Kim C. Callis" <[EMAIL PROTECTED]> wrote: > Miles, > > Thanks for the earlier reply... Although I see the > rule at looking at > pfctl rules, I still can't get squid to do anything > unless I actually > point my browser to the router. Is there something > else that I need to > have going, because I need to get squid running > correctly as soon as > possible... > > On 7/15/05, Albert Miles Enabe <[EMAIL PROTECTED]> > wrote: > > I've got mine: > > > > rdr on dc0 inet proto tcp from any to ! 10.9.9.245 > > port = http -> 127.0.0.1 port 3128 > > > > I did not insert this rule. This rule was inserted > > after squid was successfully installed via pfSense > > Packages. > > > > You may very things from the Diagnostics: Command > > Prompt: > > > > Check your current pf rdr rules > > Command: pfctl -s nat > > > > Check your current pf filter rules > > Command: pfctl -s rules > > > > See the php script that inserts the rules > > automatically > > Command: cat /etc/inc/filter.inc > > > > Cheers! > > > > Miles > > > > --- "Kim C. Callis" <[EMAIL PROTECTED]> wrote: > > > > > There is no rule reflected on the web interface > that > > > show application > > > of forwarding 3128. I was able to get is working > > > once I added a > > > forward to NAT:Forwarding. > > > > > > On 7/15/05, Albert Miles Enabe > <[EMAIL PROTECTED]> > > > wrote: > > > > If you install squid successfully from the > > > Packages > > > > module, transparent squid proxy is enabled > > > > automatically and there is no need of > inserting an > > > > additional port forwarding rule. > > > > > > > > --- "Kim C. Callis" <[EMAIL PROTECTED]> > wrote: > > > > > > > > > I am attempting to set up squid to do > > > transparent > > > > > proxying. Is there a > > > > > way via the web interface to forward port 80 > to > > > 3128 > > > > > or is that > > > > > something that I need to so directly with > pf? > > > > > > > > > > > > > > > -- > > > > > When It Absolutely, Positively has to be > > > Destroyed > > > > > Overnight!!! > > > > > > > > > > 1-(800) MARINES > > > > > > _______________________________________________ > > > > > Kim C. Callis > > > > > [EMAIL PROTECTED] > > > > > > > > > > > > > > > > > Albert Miles Enabe > > > > http://www.guihulngan.net > > > > "What have you done to clean this dirty > world?" > > > > > > > > > > > > > > > > > > > > ____________________________________________________ > > > > Start your day with Yahoo! - make it your home > > > page > > > > http://www.yahoo.com/r/hs > > > > > > > > > > > > > > > > > -- > > > When It Absolutely, Positively has to be > Destroyed > > > Overnight!!! > > > > > > 1-(800) MARINES > > > _______________________________________________ > > > Kim C. Callis > > > [EMAIL PROTECTED] > > > > > > > > > Albert Miles Enabe > > http://www.guihulngan.net > > "What have you done to clean this dirty world?" > > > > __________________________________________________ > > Do You Yahoo!? > > Tired of spam? Yahoo! Mail has the best spam > protection around > > http://mail.yahoo.com > > > > > -- > When It Absolutely, Positively has to be Destroyed > Overnight!!! > > 1-(800) MARINES > _______________________________________________ > Kim C. Callis > [EMAIL PROTECTED] > ____________________________________________________ Start your day with Yahoo! - make it your home page http://www.yahoo.com/r/hs
