pfSense » pfSense Packages

We're using Squid/Squidguard with many (!) ldap based group filters.

This does not scale because squidguard does not cache the search results by default.

It has support for caching using the keyword statement ldapcachetime <seconds>.

ldapcachetime    This global keyword specifies the number of seconds to cache LDAP search results before contacting the LDAP server again. This keyword is global and must go outside any Source/Destination/Rule blocks.
Setting this value to a reasonably low value can allow simulation of near-realtime user groupings in LDAP without restarting squidguard.
Recommended value: 300

I already patched the package in our machine, it works well.

I would like to add this patch to upstream to allow updating our system.

I can attach the patch to this ticket or create a pull request in github.