From owner-freebsd-questions@FreeBSD.ORG  Sat Nov 24 15:38:56 2012
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
 by hub.freebsd.org (Postfix) with ESMTP id BA137E0B
 for <freebsd-questions@freebsd.org>; Sat, 24 Nov 2012 15:38:56 +0000 (UTC)
 (envelope-from leslie@eskk.nu)
Received: from mx1.bjare.net (mx1.bjare.net [212.31.160.3])
 by mx1.freebsd.org (Postfix) with ESMTP id 688308FC08
 for <freebsd-questions@freebsd.org>; Sat, 24 Nov 2012 15:38:56 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by mx1.bjare.net (Postfix) with ESMTP id 360815E197
 for <freebsd-questions@freebsd.org>; Sat, 24 Nov 2012 16:38:47 +0100 (CET)
X-Virus-Scanned: Debian amavisd-new at mx1.bjare.net
X-Spam-Flag: NO
X-Spam-Score: -1.547
X-Spam-Level: 
X-Spam-Status: No, score=-1.547 tagged_above=-999 required=5
 tests=[AWL=-0.549, BAYES_00=-2.599, RCVD_IN_PBL=0.905,
 RDNS_DYNAMIC=0.1, SPF_SOFTFAIL=0.596]
Received: from mx1.bjare.net ([127.0.0.1])
 by localhost (mx1.bjare.net [127.0.0.1]) (amavisd-new, port 10024)
 with LMTP id Prw1tdjHmqsm for <freebsd-questions@freebsd.org>;
 Sat, 24 Nov 2012 16:38:45 +0100 (CET)
X-BN-MX1: ja
X-BN-MailInfo: BjareNet
Received: from [172.17.0.111] (c-195-216-043-059.ekt.thalamus.net
 [195.216.43.59]) by mx1.bjare.net (Postfix) with ESMTP id B13715E196
 for <freebsd-questions@freebsd.org>; Sat, 24 Nov 2012 16:38:45 +0100 (CET)
Message-ID: <50B0EA28.7060904@eskk.nu>
Date: Sat, 24 Nov 2012 16:39:20 +0100
From: Leslie Jensen <leslie@eskk.nu>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64;
 rv:17.0) Gecko/17.0 Thunderbird/17.0
MIME-Version: 1.0
To: freebsd questions list <freebsd-questions@freebsd.org>
Subject: Anyone using squid and pf?
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Nov 2012 15:38:56 -0000


I've upgraded squid from 3.1 to 3.2. Starting squid 3.2 with the same 
configuration file now gives me errors in cache.log when one tries to 
access any site, and of course no access!

2012/11/24 16:24:56 kid1| WARNING: Forwarding loop detected for:

Reverting back to 3.1 works.

I know there are some changes in 3.2 that does this

+ 3.2 intercept port receiving forward-proxy requests will reject them 
due to NAT failure/lies.

+ 3.2 Host header validation *will* reject if forward traffic is 
validated as being intercepted.

I would appreciate suggestions for changes to squid.conf so that squid 
will work for me with version 3.2.

Thanks

/Leslie