Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 19 Dec 2008 14:21:41 +0100
From:      Leslie Jensen <leslie@eskk.nu>
To:        freebsd-pf@freebsd.org
Subject:   clientNatLookup: PF open failed: (13) Permission denied
Message-ID:  <494B9FE5.6070501@eskk.nu>

next in thread | raw e-mail | index | archive | help
I've tried the squid users mail list but I try here. I'm aware that this 
list is not a squid list, but with it beeing PF I hope someone has a 
suggestion how to fix my problem.

I'm not sure if I want to change the rights on /dev/pf that's why I'm 
asking.



I'm running Squid-3.0.10 on FreeBSD 7.0-RELEASE-p4 with PF.

I've noticed that in cache.log are a lot of entries as the one below

clientNatLookup: PF open failed: (13) Permission denied

I've found some information on the problem via Google.

One is "start Squid as root". Squid is started via rc.conf so I think
that is sorted.

There is a concern about rights on /dev/pf

Finally there's some advice

---- snip----
If you are performing any kind of transparent interception with squid
you will need one of the --*-transparent options. Without it squid will
fail to correctly spoof the clients IP.
----- snip ----

I do not fully understand where the "--*-transparent options" are to be
found. And if it's the solution to the problem.

Will someone Please enlighten me?

Thank you
/Leslie





Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?494B9FE5.6070501>