web Proxy Error

Started by davidpiki, March 14, 2024, 05:28:43 PM

Previous topic - Next topic
Hello!! how are you?
I'm setting up a new opnsense server:
opnsens V: 24.1.3_1 Architecture amd64 Commit 8146dae75
Mirror https://pkg.opnsense.org/FreeBSD:13:amd64/24.1

I'm trying to activate squid proxy and there is no way. It is by default. Does anyone know how to put these ports? or what do I have to do?
thank you very much!

proxy load error
Starting squid.
CPU Usage: 0.011 seconds = 0.000 user + 0.011 sys
Maximum Resident Size: 63712 KB
Page faults with physical i/o: 0
2024/03/14 16:20:21| Processing Configuration File: /usr/local/etc/squid/squid.conf (depth 0)
2024/03/14 16:20:21| Processing Configuration File: /usr/local/etc/squid/pre-auth/40-snmp.conf (depth 1)
2024/03/14 16:20:21| Processing Configuration File: /usr/local/etc/squid/pre-auth/dummy.conf (depth 1)
2024/03/14 16:20:21| Processing Configuration File: /usr/local/etc/squid/pre-auth/parentproxy.conf (depth 1)
2024/03/14 16:20:21| ERROR: ACL not found: Safe_ports
2024/03/14 16:20:21| Not currently OK to rewrite swap log.
2024/03/14 16:20:21| storeDirWriteCleanLogs: Operation aborted.
2024/03/14 16:20:21| FATAL: Bungled /usr/local/etc/squid/squid.conf line 63: http_access deny !Safe_ports
2024/03/14 16:20:21| Squid Cache (Version 6.7): Terminated abnormally.
/usr/local/etc/rc.d/squid: WARNING: failed to start squid

thank you!! that's it. If you want you can delete this post. sorry and thank you. The solution is in the access list to put 443 as enabled :)

Hi,

Thanks for this question, it may look silly to ask but I would be grateful if you could tell me how I do this?
Many thanks for considering my request.
VivekSP


May 21, 2025, 03:47:33 PM #4 Last Edit: Today at 11:47:09 AM by Axystosa
If you're seeing the "ACL not found: Safe_ports" error in OPNsense Squid, it means the Safe_ports rule is missing from your config. Just add this line to your squid.conf:

yaml

acl Safe_ports port 80 443 21 70 210 1025-65535


Then make sure it's referenced like this:

yaml

http_access deny !Safe_ports

Restart Squid after saving. For easier proxy management, services like lightningproxies.net can help streamline things.