Hi together
I try to get my Web Proxy to work with CARP Failover.
I can't configure WebProxy to listen on Virtual IP. So I tried the solution I found somewhere in the Internet. Created a NAT Rule for VirtualIP:3128->localhost:3128.
If I now try to connect with firefox it doesn't work. If I try with telnet it works...
Does everyone meybe have a hint for me, how I can get that setup to work it would be really great!
Regards
scream
It should automatically bind to the vip's of your interface, so when adding lan for example it should automatically add all vips attached to lan too.
Easiest way to inspect your listening config is to grep the squid file, like
grep -E "http_port|https_port" /usr/local/etc/squid/squid.conf
related code https://github.com/opnsense/core/blob/17.1.8/src/opnsense/service/templates/OPNsense/Proxy/squid.conf#L38-L50 (https://github.com/opnsense/core/blob/17.1.8/src/opnsense/service/templates/OPNsense/Proxy/squid.conf#L38-L50)
Unfortently not.. :(
System 1:
admin@fw1:~ % grep -E "http_port|https_port" /usr/local/etc/squid/squid.conf
http_port 192.168.1.2:3128
System 2:
admin@fw2:~ % grep -E "http_port|https_port" /usr/local/etc/squid/squid.conf
http_port 192.168.1.3:3128
My "VIP LAN" is 192.168.1.4. Is there something I missed maybe?
Version of opnsense is 17.1.8 and squid 3.5.24_2.
Edit: If I add the line manually to the squid.conf it works great.But after a reboot it is gone.. because the config file is rewritten... :(
just to be sure, which version of OPNsense are you using?
oooh.. I'm sorry. I think I found the error :( Version is 17.1.4.
I clicked the upgrad button yesterday but nothing seems to be happend.
Will report back after upgrade..
Edit: Now both look fine :D