Murus Pro and Murus Services (squid) as transparent proxy

Murus
Post Reply
Jyin
Posts: 2
Joined: Wed Mar 02, 2016 2:16 am

Murus Pro and Murus Services (squid) as transparent proxy

Post by Jyin » Fri Apr 08, 2016 3:08 am

So I went ahead and purchased the Murus Pro.
So far I am very pleased with it.

I got NAT setup and inbound and outbound filter going in no time.
Now, I did add domain/hostnames in the custom group, and I understand this is not a recommended practice.

So, I went ahead and downloaded the Murus Services and setup squid.
That's when I ran into issues.

1. The Murus Services does not like to be closed. If I close it, it will not re-open, unless I reboot.
For now, I am just going keep it running.

2. I can't seem to be able to add multiple blocked site at a time.
I found the /usr/local/murus/squid/etc/squid/blacklist, so I will try editing this file. But due to the issue #1, it's a bit hard to see if it works at all.

3. I can't seem to figure out how to set it up as transparent proxy.
I found this post here:
http://murusfirewall.com/forum/viewtopi ... proxy#p409
Here's the rule I tried out:
rdr pass log inet proto {tcp, udp} from !192.168.1.1 to any port {80, 443} -> 127.0.0.1 port 3128
But I get this in the squid's access log
1460083613.793 0 192.168.1.2 TAG_NONE/400 4070 NONE error:invalid-request - HIER_NONE/- text/html


Any suggestion how I get squid working with pf (murus)?

Jyin

Post Reply