Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 26 Nov 2012 11:38:58 +0200
From:      Volodymyr Kostyrko <c.kworr@gmail.com>
To:        Leslie Jensen <leslie@eskk.nu>
Cc:        freebsd questions list <freebsd-questions@freebsd.org>
Subject:   Re: Anyone using squid and pf?
Message-ID:  <50B338B2.3090600@gmail.com>
In-Reply-To: <50B0EA28.7060904@eskk.nu>
References:  <50B0EA28.7060904@eskk.nu>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
24.11.2012 17:39, Leslie Jensen:
>
> I've upgraded squid from 3.1 to 3.2. Starting squid 3.2 with the same
> configuration file now gives me errors in cache.log when one tries to
> access any site, and of course no access!
>
> 2012/11/24 16:24:56 kid1| WARNING: Forwarding loop detected for:
>
> Reverting back to 3.1 works.
>
> I know there are some changes in 3.2 that does this
>
> + 3.2 intercept port receiving forward-proxy requests will reject them
> due to NAT failure/lies.
>
> + 3.2 Host header validation *will* reject if forward traffic is
> validated as being intercepted.
>
> I would appreciate suggestions for changes to squid.conf so that squid
> will work for me with version 3.2.

When switching to 3.2 I had to split listening ports - one for 
transparency and one for the local machine. However this doesn't looks 
like your case.

Can you please provide relevant parts of pf.conf and full log output, 
not just the first line?

-- 
Sphinx of black quartz, judge my vow.



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?50B338B2.3090600>