Transparent proxy

[guest10902]

Hi, i'm having troubles with transparent proxy.

I want to active Transparent proxy to control ads on network.

Inspired by this previous post : https://forum.opnsense.org/index.php?topic=1351.0 :

1. goto services --> proxy server
2. look for Remote Access Control List tab
3. add new Remote Blacklist
4. put file name
5. put the URL    http://bit.ly/squidadserver
6. Save changes

Then I tried to go on a web page which I know was full of pub such as Uptobox.com
But then the page remains unavailable, can't access it, timeout if I remember well. But if I remove the transparent proxy (with NAT and firewall rule), I can access the page.

Any suggestions ?

[phoenix]

Which site is it that you're trying to access? When you enable the proxy, are other sites available or does it cause problems for them as well?

[guest10902]

I tried this page : http://uptobox.com/r16oedrw9lyk and not available
This one as well, not available : http://danstonchat.com/latest.html
Some sites are available, some are not... But It's not random

[phoenix]

Hmmm, both of those sites work for me. I've just enabled the proxy and added the blocklist and pointed my browser at the proxy port, they are both accessible and no ads.

[guest10902]

Obviously I made a mistake, I didnt used the proxy server in my browser.
Now I can see every sites, but I also see ads. May I missed smthg ? Should I put the firewall rule above everything else ?

[guest10902]

Another question : Why do I have to configure my browser for being able to use the Transparent Proxy ? As it is "transparent", shouldnt be able to use it without having to configure my browser ?

[guest10902]

Up ?

[franco]

If you want to use transparent proxying, you need to set up a redirection rule. On the proxy config where the transparent proxy checkbox is enable the health text and it lets you click a link to the NAT page with a template redirection rule that is needed.

Proxying does not work for HTTPS at the moment, if the ads are pulled via HTTPS it doesn't work, too.

[tadziz]

Hello. Sorry for replying to old post, but maybe someone could make a "How to" manual ?
I clicked on link which redirects to rule template and at this point i have question. Section: IP. What i need to enter there ? LAN gateway ip address ? 192.168.1.1? if i leave default 127.0.0.1, ads are not blocked. If i enter 192.168.1.1(LAN gateway ip) and try to open site i get error. See attached image.

I would be very happy if someone could help me with that

Thanks,
  Tadas

[jandal]

I'm having a problem with my dhcp

i activate dhcp server in lan interface, when i connect the switch from lan interface, dhcp client get the ip but they did not have an internet connection also client cannot ping opnsense server.

please help!

thanks,

[netranger]

dhcp client get the ip but they did not have an internet connection also client cannot ping opnsense server.

Did you create a firewall rule for ping?

[netranger]

Hello. Sorry for replying to old post, but maybe someone could make a "How to" manual ?
I clicked on link which redirects to rule template and at this point i have question. Section: IP. What i need to enter there ? LAN gateway ip address ? 192.168.1.1? if i leave default 127.0.0.1, ads are not blocked. If i enter 192.168.1.1(LAN gateway ip) and try to open site i get error. See attached image.

You dont have to change the template for trans. Proxy.
Did you install a blacklist for the ads which works when configuring proxy manually?