Ive got Pfsense running on one box going out to 5 DSL WAN Ports. I have now
setup a squid box running separately. I would like to run it as a
transparent proxy on my network. How do you suggest I set it up ?
Do I put another NIC in the squid box, then setup a firewall rule to route
all http
battery appears to be fine. i didn't put a volt meter on it, but when the
computer has been off, the cmos info stayed current.
i'll take it down on monday, and if it is low on voltage, i'll report back
Date: Sun, 11 May 2008 16:29:39 +1200
From:
i think it would be cool to route http traffic to the squid box, but put a rule
just infront of it to allow your squid box to go out the firewall. for
security i would not allow a second nic to go out the squid box onto the
internet.
i myself set up the browsers manually for the squid box.
Hi Dean ,
Thanks for the feedback, so are you suggesting I only use 1 NIC for the
squid box ? as opposed to 2, 1 coming IN from the Pfsense / internal network
and 1 going BACK to the Pfsense.
Regards,
Mike Lever
Tenacity Films (Pty) Ltd t/a
Velocity Films
(T) +2711-807-0100
(F)
Hello!
First of all, does pfSense support
- pptp vpn interfaces as WAN
- more than one(I need 8) pptp vpn interface as WAN
?
It is known that
http://doc.pfsense.org/index.php/What_about_using_multiple_WAN_connections%3F
Multiple WAN connections are supported under some circumstances. Only one WAN
2008/5/11 Michael Smirnov [EMAIL PROTECTED]:
Hello!
First of all, does pfSense support
- pptp vpn interfaces as WAN
Yes
- more than one(I need 8) pptp vpn interface as WAN
No.
Is there a workaround to connect all 8 pptp connections
from pfSense simultaneously?
Not a good one. 8
that's the thing, you don't... Each time you change anything in your
rules or reboot the box, this configuration is lost. You could save the
edited rules.debug file and use it whenever you loose this specific rule
Sex, 2008-05-09 às 16:14 -0300, Diego A. Gomez escreveu:
2008/5/9 David Meireles
Just setup the pfSense DHCP Server to use the squid box as gateway
address.
Dom, 2008-05-11 às 15:23 +0200, Mike Lever escreveu:
Hi Dean ,
Thanks for the feedback, so are you suggesting I only use 1 NIC for the
squid box ? as opposed to 2, 1 coming IN from the Pfsense / internal network
Done that, but where I was battling was setting IP addresses on the pfsense
interface (the squid is static) what do I set as the ip address and gateway ?
Also how do I configure the firewall rules ?
Any ideas there ?
Mike Lever
Tenacity Films (Pty) Ltd
t/a Velocity Films
(t) +2711-807-0100
Ok, on the DHCP Server you have as gateway the squid server, and the
squid server will have as gateway the pfsense IP (that way you won't
need to have 2 interfaces on the squid server, since it's all in the
same subnet). About the rules, use only the squid server to apply the
squid rules, and the
Thaks David ! Bear in mind that I am using it as a transparent proxy. Surely I
must set some rules on the firewall to route all http traffic to the squid box
and back to the pfsense box ?
Mike Lever
Tenacity Films (Pty) Ltd
t/a Velocity Films
(t) +2711-807-0100
(f) +2711-807-1208
Try this:
Add a portforward at interface LAN, external adress any (not interface adress),
protocol TCP, external port range 80, NAT IP proxy at OPTx, local port 80.
Save, apply.
Hope, it works,
Martin
-Ursprüngliche Nachricht-
Von: Mike Lever [mailto:[EMAIL PROTECTED]
Gesendet:
Don't know which squid and sitro are you using, but in my scenario,
using pfsense as gateway and IPCop as squid (before started using squid
on pfSense), the IPCop host would automaticly send the trafic (in case
of http, after entering the squid process) to it's gateway, that would
be the pfsense
13 matches
Mail list logo