Summary: | www/squid TP_PF does not work, especially inside jail | ||
---|---|---|---|
Product: | Ports & Packages | Reporter: | Yoshisato Yanagisawa <osho> |
Component: | Individual Port(s) | Assignee: | Guido Falsi <madpilot> |
Status: | Closed Overcome By Events | ||
Severity: | Affects Some People | CC: | madpilot |
Priority: | --- | ||
Version: | Latest | ||
Hardware: | Any | ||
OS: | Any |
Description
Yoshisato Yanagisawa
2014-09-21 14:56:08 UTC
How to fix? Add --with-nat-devpf at configure time. I know this patch should only be used with TP_PF is enabled but when I changed www/squid Makefile like this, transparent proxy looks working. --- Makefile.bak 2014-09-19 00:22:37.000000000 +0900 +++ Makefile 2014-09-22 00:09:35.952872265 +0900 @@ -176,7 +176,8 @@ --disable-epoll \ --disable-linux-netfilter \ --disable-linux-tproxy \ - --disable-translation + --disable-translation \ + --with-nat-devpf .include <bsd.port.options.mk> Not having --with-nat-devpf may useful where /dev/pf is not available but it looks not working inside jail. Can you make --with-nat-devpf configurable with "make config"? Or, can you add --with-nat-devpf when TP_PF is enabled? Thank you in advance, Hi, In r368596, on Fri Sep 19, I committed a change to the squid port which should fix this issue, it adds the configure option you are asking when the TP_PF option is selected. Are you using the squid port before or after that? Can you test after updating your ports collection and report back? I am using the latest squid port using "portsnap fetch update". Anyway, the issue seems to be fixed with the latest ports. Thank you for the quick fix. Already fixed in r368596. Thanks. |