- Is the squid cache LISTENing on port 3128 of the lo0 interface?
Please post the output of
Code:
$ netstat -an -f inet
- Your pf.conf really does not do any filtering . It can be simplified even more:
Code:
## Definitions
int_if="em0"
ext_if="fxp0"
## No restrictions on Loopback Interface
## No restrictions on Inside LAN Interface for private network
## No restrictions on WAN Interface
set skip on { lo0, $int_if, $ext_if }
## Redirect WWW traffic to local cache
rdr on $int_if inet proto tcp from $int_if:network to any port www -> 127.0.0.1 port 3128
- Is pf enabled? What is the output of?
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
|