Re: [pfSense] Fwd: Re: small problem with squid
It seems to have been solved. -my setting now: kernel: vfs.read_max=128 kern.ipc.somaxconn=4096 kern.ipc.soacceptqueue=4096 kern.ipc.nmbclusters=100 squid: quick_abort_min 0 KB quick_abort_max 0 KB log_icp_queries off client_db off buffered_logs on half_closed_clients off memory_pools off My next question: How to change squid error page port? (and squidguard error page) I would like that, It is not the same as the pfSense gui.. kemecs 2017.03.09. 8:41 keltezéssel, Kemecsei Gábor írta: I upgraded again squid and squidGuard. Does not help. -still a lot of errors: TAG_NONE_ABORTED/000 TCP_MISS_ABORTED/200 I tried to set a lot of things.. for example: Firewall Optimization Options: "Higth-latency" What this may be because? TAG_NONE_ABORTED/000 If I turn off SuidGuard, there will be less of it, but persists. kemecs 2017.02.28. 11:37 keltezéssel, Kemecsei Gábor írta: I see a number of these: TAG_NONE_ABORTED/000 since I upgraded: squid 0.4.35_3> 0.4.36 be some bug? kemecs 2017.02.14. 21:38 keltezéssel, Steve Yates írta: If I'm following, you're using a public IP:port. Did you set up NAT Reflection? (System/Advanced/Firewall & NAT) -- Steve Yates ITS, Inc. -Original Message- From: List [mailto:list-boun...@lists.pfsense.org] On Behalf Of Steve Berg Sent: Monday, February 13, 2017 3:45 PM To: list@lists.pfsense.org Subject: [pfSense] small problem with squid Just set up a new pfsense box, my own hardware running the latest release, 2.3.2-RELEASE-p1. So far it's been pretty smooth but I just ran into one glitch I can't quite figure out. I've got two NAT rules that redirect incoming ports 80xx and 80xy to two different web servers internal to my network. My external IP is resolved using DynDNS and everything works nicely from my iPad when I'm off the local network. But using the same hostname:port when I'm connected to the WiFi I get no response and the squid Real Time page shows a "TCP_DENIED/403" entry for one of the systems, and "TCP_MISS_ABORTED/000" for the other. Using the local IP when on the WiFi works as expected and I see 13.02.2017 15:43:00 10.x.x.x TCP_MISS/200 http://10.x.x.x/path/to/webpage - 10.x.x.x I'm fairly new to pfsense and squid so I've probably missed something simple but I'd appreciate a tip or pointer to where to go to fix this issue. ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] Fwd: Re: small problem with squid
I upgraded again squid and squidGuard. Does not help. -still a lot of errors: TAG_NONE_ABORTED/000 TCP_MISS_ABORTED/200 I tried to set a lot of things.. for example: Firewall Optimization Options: "Higth-latency" What this may be because? TAG_NONE_ABORTED/000 If I turn off SuidGuard, there will be less of it, but persists. kemecs 2017.02.28. 11:37 keltezéssel, Kemecsei Gábor írta: I see a number of these: TAG_NONE_ABORTED/000 since I upgraded: squid 0.4.35_3> 0.4.36 be some bug? kemecs 2017.02.14. 21:38 keltezéssel, Steve Yates írta: If I'm following, you're using a public IP:port. Did you set up NAT Reflection? (System/Advanced/Firewall & NAT) -- Steve Yates ITS, Inc. -Original Message- From: List [mailto:list-boun...@lists.pfsense.org] On Behalf Of Steve Berg Sent: Monday, February 13, 2017 3:45 PM To: list@lists.pfsense.org Subject: [pfSense] small problem with squid Just set up a new pfsense box, my own hardware running the latest release, 2.3.2-RELEASE-p1. So far it's been pretty smooth but I just ran into one glitch I can't quite figure out. I've got two NAT rules that redirect incoming ports 80xx and 80xy to two different web servers internal to my network. My external IP is resolved using DynDNS and everything works nicely from my iPad when I'm off the local network. But using the same hostname:port when I'm connected to the WiFi I get no response and the squid Real Time page shows a "TCP_DENIED/403" entry for one of the systems, and "TCP_MISS_ABORTED/000" for the other. Using the local IP when on the WiFi works as expected and I see 13.02.2017 15:43:00 10.x.x.x TCP_MISS/200 http://10.x.x.x/path/to/webpage - 10.x.x.x I'm fairly new to pfsense and squid so I've probably missed something simple but I'd appreciate a tip or pointer to where to go to fix this issue. ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
[pfSense] Fwd: Re: small problem with squid
I see a number of these: TAG_NONE_ABORTED/000 since I upgraded: squid 0.4.35_3> 0.4.36 be some bug? kemecs 2017.02.14. 21:38 keltezéssel, Steve Yates írta: If I'm following, you're using a public IP:port. Did you set up NAT Reflection? (System/Advanced/Firewall & NAT) -- Steve Yates ITS, Inc. -Original Message- From: List [mailto:list-boun...@lists.pfsense.org] On Behalf Of Steve Berg Sent: Monday, February 13, 2017 3:45 PM To: list@lists.pfsense.org Subject: [pfSense] small problem with squid Just set up a new pfsense box, my own hardware running the latest release, 2.3.2-RELEASE-p1. So far it's been pretty smooth but I just ran into one glitch I can't quite figure out. I've got two NAT rules that redirect incoming ports 80xx and 80xy to two different web servers internal to my network. My external IP is resolved using DynDNS and everything works nicely from my iPad when I'm off the local network. But using the same hostname:port when I'm connected to the WiFi I get no response and the squid Real Time page shows a "TCP_DENIED/403" entry for one of the systems, and "TCP_MISS_ABORTED/000" for the other. Using the local IP when on the WiFi works as expected and I see 13.02.2017 15:43:00 10.x.x.x TCP_MISS/200 http://10.x.x.x/path/to/webpage - 10.x.x.x I'm fairly new to pfsense and squid so I've probably missed something simple but I'd appreciate a tip or pointer to where to go to fix this issue. ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] Unable to check for updates?
Helped console update! (ssh -> 13) thx 2016.07.29. 21:03 keltezéssel, Dan Langille írta: On Jul 29, 2016, at 5:20 AM, Kemecsei Gábor <kemec...@folkradio.hu> wrote: "Unable to check for updates" It's ok? I use: "2.3.1-RELEASE-p5 (i386) built on Thu Jun 16 12:53:31 CDT 2016 FreeBSD 10.3-RELEASE-p3 " The Package Manager reply: "Unable to retrieve package information." I have a bug or pfSense? Is this a DNS issue? Sounds like a problem I had until enabled DNS Forwarder on localhost: see https://forum.pfsense.org/index.php?topic=115197.msg641301#msg641301 <https://forum.pfsense.org/index.php?topic=115197.msg641301#msg641301> ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
[pfSense] Unable to check for updates?
"Unable to check for updates" It's ok? I use: "2.3.1-RELEASE-p5 (i386) built on Thu Jun 16 12:53:31 CDT 2016 FreeBSD 10.3-RELEASE-p3 " The Package Manager reply: "Unable to retrieve package information." I have a bug or pfSense? kemecs ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] Squid - Select loop Error. Retry 1
+ interesting: 2015/04/17 07:46:36 kid1| Select loop Error. Retry 1 2015/04/17 08:46:35 kid1| Select loop Error. Retry 1 2015/04/17 09:46:36 kid1| Select loop Error. Retry 1 occurs exactly one hour of downtime, bat crontab in this case there is nothing 2015.04.16. 12:30 keltezéssel, Kemecsei Gábor írta: Hello! [2.2.2-RELEASE][ad...@proxy2.domain.hu]/root: tail -2354325 /var/squid/logs/cache.log | grep 11:45 2015/04/16 11:45:48 kid1| *Select loop Error. Retry 1* What is this?? When this happens, the squid was stop. (about 1 minute) why? I searched the net but could not find a solution.. My system: 1200 user Squid 3.4.10_2 pkg 0.2.8 https://github.com/pfsense/pfsense-packages/commits/master/config/34 squidGuard 1.4_7 pkg v.1.9.14 https://github.com/pfsense/pfsense-packages/commits/master/config/squidGuard Pfsense *2.2.2-RELEASE 64 bit* State table size 1% (15213/143) MBUF Usage 24% (6330/26584) Memory usage 41% of 14300 MB Intel(R) Xeon(TM) CPU 3.00GHz Sincerely, kemecs ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold