Redirecting SQUID Transparent Proxy through VPN

By CPressland
in Smart Home, Network & Security

 Share

Recommended Posts

Grand Master

CPressland

Posted
Posted

Hey guys,

As you may know from previous Threads I've got a pfSense box as my router and am diverting all WAN bound traffic through a OpenVPN connection.

Now I've installed SQUID and set it to Transparent mode so everyone gets the Caching Benefits (large hard drive so I've set a massive cache) but now my WAN IP is showing as my Virgin Media IP address and not my VPN IP, how can I have SQUID Traffic sent via the OVPN Interface instead of the WAN Interface?

Thanks

Chris

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Love to see topics about pfsense and all here on neowin, but your prob better off we these types of questions on their forums.. I am also pretty active there under a different nick

Quick google found this

http://forum.pfsense.org/index.php?topic=32732.0

HOW TO - OpenVPN to a public VPN provider + transparent SQUID

I am currently not using squid, nor a vpn provider so sad to say prob wont be much help with this one.

edit: I was just reading this linked thread, and I think the guy is off his rocker ;) hehehehe there has to be a much easier way than the nonsense he is spouting.

Im thinking something as simple as telling squid which gateway to use would be more like it.

Grand Master

CPressland

Posted
  • Author
Posted

# TAG: tcp_outgoing_address

in squid.conf?

squid.conf file shouldn't be modified manually on pfsense from what I've read.

Love to see topics about pfsense and all here on neowin, but your prob better off we these types of questions on their forums.. I am also pretty active there under a different nick

Quick google found this

http://forum.pfsense.org/index.php?topic=32732.0

HOW TO - OpenVPN to a public VPN provider + transparent SQUID

I am currently not using squid, nor a vpn provider so sad to say prob wont be much help with this one.

edit: I was just reading this linked thread, and I think the guy is off his rocker ;) hehehehe there has to be a much easier way than the nonsense he is spouting.

Im thinking something as simple as telling squid which gateway to use would be more like it.

I agree, not wasting my time with Virtual Machines etc. I've read everything on the pfSense forum and nothing has been helpful.

So pfSense is a software engine that runs on top of whatever managing software comes with the router/firewall ?

confused - for instance we have a SonicWall firewall & Cisco routers - where would this come in to play ?

pfSence is an x86 Firewall Distro based on FreeBSD. So, this PC is my Router/Firewall/SQUID/etc

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

I have been toying with testing out a vpn provider to be able play with policy based routing.. I have my server that runs my utorrent, and would like to play with just routing its torrent traffic through the vpn. This is more and more common type setup and would like some experience with it to help others going down that path.

It shouldn't be that difficult since traffic is going to be from one port, etc.

Just not sure when I will get around to it, wife had to go and get me a kindle fire for xmas and I can see that will keep me occupied for a few days ;) tinkering. Need to get a openvpn client working on it, and then would love to get a remote desktop app working on it, etc.

You might want to bring sc302 in on this, I know he is actively using squid on pfsense -- I fire it up now and then if need to answer a question for someone. But my pfsense box is only a 800mhz p3 with 512MB ram and since I really have no need to filter anything. And don't have a vpn - also been toying with creating a site to site to work, but have to pull the cert out of my tiks card, etc. Again on my list of things to play with but just not on the front burner.

I really suggest you POST your question on the pfsense forums, very responsive normally!!

And there is nothing saying you can not directly edit the squid.conf -- I have been doing it with the unbound package on pfsense since it came out, to get ipv6 features and acl settings before the gui had the options available, etc. Just the changes got overwritten if you install updated package, etc. But sure there is nothing wrong with tinkering with the underlaying conf files with anything you install on pfsense.. Once you figure it out make sure you post a how to on pfsense so there is something other than that junk I linked too ;)

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Get 1-year and $60 of Sam's Club value for just $15 with Auto-renew

      By News Staff · Posted

      Get 1-year and $60 of Sam's Club value for just $15 with Auto-renew by Steven Parker Become a Sam's Club Member Now! Shop Premium-Quality Products and Enjoy Incredible Perks, and Savings. Today's highlighted deal comes via our Gift Cards section of the Neowin Deals store, where for only a limited time, you can save 75% off a Sam's Club 1 Year Membership with Auto-Renew. Sam’s Club is a membership warehouse club, a limited-item business model that offers members quality products at an exceptional value unmatched by traditional retail. From groceries and kitchen supplies to electronics and furniture, Sam's Club has great deals on the items you want! By redeeming and signing up as a member, you'll be paying just $20 for a 1 year Sam's Club membership (normally $50.) You'll receive a complimentary household card for more savings from already low-priced items. Sign up now and save money on all your food and decor. Find great deals on groceries, kitchen supplies, electronic, furniture & more Get discounts on hotels, rental car, live events, attractions, movies, & more Save up to 60% on hotel accommodations around the world Get a complimentary household card for more savings from already low-priced items Although it was published quite some time ago, Sam's Club members can enjoy discounts like this. Important Details For a physical membership card after online membership registration, present your phone number or email along with a valid ID at Sam’s Club Membership Services in any US Sam's Club location to have your membership card printed. This membership offer is only available to new Sam's Club members in the USA. It is not valid for membership renewals, for those with a current membership, or those who were Sam’s Club members less than 6 months prior to the current date. To check your renewal date, please check your billing statement or your online account, or chat with an associate. Promotion code is non-transferable Offer valid for new Sam’s Club members only; not valid for membership renewals, for those with a current membership, or those who were Sam’s Club members less than 6 months prior to the current date. Auto Renew: By accepting this offer, you authorize annual recurring charges to any card on file for your Sam's Club membership fee(s) plus any applicable taxes at then-current rate every year until you cancel. Current rates, which may change, are $50 for Club level and $110 for Plus level. Visit SamsClub.com or a club or call 1-888-746-7726 for full terms or to cancel auto-renewal. Valid at over 597 U.S. Sam’s Club locations. Find a location near you. Redemption deadline: redeem your code within 30 days of purchase Access options: desktop & mobile Membership MUST be activated within 30 days Membership expires 1 YEAR from the date the Sam's Club membership is activated Limit 1 per person, may buy 1 additional as gift This Sam's Club 1 Year Membership normally costs $60, but can now be yours for just $15, for a limited time, that's a saving of $45 (70%) off! For specifications, and terms, please click the link below. Get 1-year of Sam's Club with Auto-renew for just $15 (was $60) This deal is only available to U.S. residents. Support queries If you have queries or need support for any of the Neowin Deals, please use the contact form here. Neowin Deals are managed and sold by StackCommerce who represent Neowin on an affiliate basis. Why we post these deals We post these because we earn commission on each sale so as not to rely solely on advertising, which many of our readers block. It all helps toward paying staff reporters, servers and hosting costs. So for those that keep moaning and complaining, be thankful we're still online for you to even do that. Other ways to support Neowin Whitelist Neowin by not blocking our ads Create a free member account to see fewer ads Make a donation to support our day to day running costs Subscribe to Neowin - for $14 a year, or $28 a year for an ad-free experience Disclosure: Neowin benefits from revenue of each sale made through our branded deals site powered by StackCommerce.
    • Microsoft will soon allow some users to block Copilot from analyzing their Office files

      By excalpius · Posted

      Microsoft, why can't I just turn off Copilot on my MS account (in order to stop OneDrive from wanting to summarize everything, ahem) in a way that doesn't break OneNote instead?
    • Politically funny images of the World

      By +DoctorD · Posted

    • Major Xbox layoffs may claim South of Midnight developer Compulsion entirely

      By ryansurfer98 · Posted

      If we can't agree on a baseline of reality then there is no point in talking. Its a waste of time.
    • Politically funny images of the World

      By Xenon · Posted

  • Recent Achievements

    • Collaborator
      ryansurfer98 went up a rank
      Collaborator
    • Week One Done
      Eurosoft10 earned a badge
      Week One Done
    • One Month Later
      Eurosoft10 earned a badge
      One Month Later
    • One Year In
      Skeet Campbell earned a badge
      One Year In
    • One Month Later
      Sharbel earned a badge
      One Month Later

  • Popular Contributors

    1. 1
      +primortal
      589
    2. 2
      +Edouard
      190
    3. 3
      PsYcHoKiLLa
      80
    4. 4
      Michael Scrip
      77
    5. 5
      Steven P.
      73
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!