[squid-users] clientNatLookup: PF open failed: (13) Permission denied

From: Leslie Jensen <leslie_at_eskk.nu>
Date: Tue, 16 Dec 2008 18:01:13 +0100

I'm running Squid-3.0.10 on FreeBSD 7.0-RELEASE-p4 with PF.

I've noticed that in cache.log are a lot of entries as the one below

clientNatLookup: PF open failed: (13) Permission denied

I've found some information on the problem via Google.

One is "start Squid as root". Squid is started via rc.conf so I think
that is sorted.

There is a concern about rights on /dev/pf

Finally there's some advice

---- snip----
If you are performing any kind of transparent interception with squid
you will need one of the --*-transparent options. Without it squid will
fail to correctly spoof the clients IP.
----- snip ----

I do not fully understand where the "--*-transparent options" are to be
found. And if it's the solution to the problem.

Will someone Please enlighten me?

Thank you
/Leslie
Received on Tue Dec 16 2008 - 17:01:17 MST

This archive was generated by hypermail 2.2.0 : Wed Dec 17 2008 - 12:00:03 MST