Project

General

Profile

Actions
Copy link

Feature #1100

closed

Add additional ports to squid (includes patch)

Added by Yehuda Katz over 13 years ago. Updated almost 12 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
Squid
Target version:
-
Start date:
12/14/2010
Due date:
% Done:

100%

Estimated time:
Plus Target Version:

Description

Background:
People on our network use Citrix XenApp to connect to other locations.
Citrix XenApp uses TCP ports 1494 2598 8443 and uses the windows proxy settings, therefore these ports must be added to the squid configuration.

The attached patch adds two new fields in the squid config:
acl safeports - This is a space-separated list of "safe ports" in addition to the already defined list
acl sslports - This is a space-separated list of ports to allow SSL "CONNECT" in addition to the already defined list

Files

Download all files
diff_squid.inc.diff (1.06 KB) diff_squid.inc.diff Yehuda Katz, 12/14/2010 06:27 PM
diff_squid.xml.diff (977 Bytes) diff_squid.xml.diff Yehuda Katz, 12/14/2010 06:27 PM
diff_squid.inc.diff (1.06 KB) diff_squid.inc.diff Yehuda Katz, 12/21/2010 01:27 AM
diff_squid_nac.xml.diff (980 Bytes) diff_squid_nac.xml.diff Yehuda Katz, 12/21/2010 01:27 AM
diff_squid.inc.diff (919 Bytes) diff_squid.inc.diff Yehuda Katz, 12/21/2010 01:31 AM
Actions
Copy link
 #1

Updated by Jim Pingle over 13 years ago

One problem with what you have:

squid_resync_nac() which contains your change:

$settings = $config['installedpackages']['squid']['config'][0]; /* squidnac does not exist */

squidnac does exist, but only if you have settings on the Access Control tab of squid, which is handled in squid_nac.xml - where these settings should probably go.

Can you try to make the changes there instead, and restore that line to its previous reference to 'squidnac' instead of 'squid' so it doesn't break the other settings on the access control tab.

Thanks!

Actions
Copy link
 #2

Updated by Yehuda Katz over 13 years ago

OK. I moved the options to the AC page.

Actions
Copy link
 #3

Updated by Yehuda Katz over 13 years ago

Of course, again, I upload the wrong files.
Please wait...

Actions
Copy link
 #4

Updated by Yehuda Katz over 13 years ago

This is the correct one.
The SSH program I use to copy the files from my pfSense dev box to my regular computer sometimes caches the old versions of the files, I really should check them every time before uploading.

Actions
Copy link
 #5

Updated by Jim Pingle over 13 years ago

  • Status changed from New to Feedback
  • % Done changed from 0 to 100

Applied in changeset commit:"dd44ad60dc3f3f7e736e26644f7ea706127a6779".

Actions
Copy link
 #6

Updated by Jim Pingle about 12 years ago

Applied in changeset commit:dfbb5e15dfdcacafbb7544257da252a0c4ea33ed.

Actions
Copy link
 #7

Updated by Jim Pingle almost 12 years ago

  • Status changed from Feedback to Resolved
Actions
Copy link

Also available in: Atom PDF