Show Posts
1
Web Proxy Filtering and Caching / Pf blocks Squid listening port
« on: March 04, 2020, 11:27:31 am »
Hello,
I have recently installed OPNSense on PC with 1 NIC (configured as LAN) with the goal to set it up as web proxy. I have configured Squid as non-transparent proxy with default port (3128) bound to LAN interface, but I can not connect to it from LAN - nothing is listening on port 3128 (nMap and telnet). Weird thing is, when I go to CLI and enter netstat -a -n | egrep 'Proto|LISTEN', there is Squid process listening:
I suspect I'm doing some rookie mistake, but I can't understand where. Can the community help me?
I have recently installed OPNSense on PC with 1 NIC (configured as LAN) with the goal to set it up as web proxy. I have configured Squid as non-transparent proxy with default port (3128) bound to LAN interface, but I can not connect to it from LAN - nothing is listening on port 3128 (nMap and telnet). Weird thing is, when I go to CLI and enter netstat -a -n | egrep 'Proto|LISTEN', there is Squid process listening:
Code: [Select]
tcp4 0 0 10.116.44.195.3128 *.* LISTENIf I stop pf from CLI and restart Squid, I now can connect to port 3128 and everything works just fine (browser connects to proxy and goes to Internet). Firewall settings are all default ("allow all to all"), I have tried to explicitly permit access to and from Squid port, but to no avail. I suspect I'm doing some rookie mistake, but I can't understand where. Can the community help me?