clientNatLookup: PF open failed: (13) Permission denied
Leslie Jensen
leslie at eskk.nu
Fri Dec 19 05:21:45 PST 2008
I've tried the squid users mail list but I try here. I'm aware that this
list is not a squid list, but with it beeing PF I hope someone has a
suggestion how to fix my problem.
I'm not sure if I want to change the rights on /dev/pf that's why I'm
asking.
I'm running Squid-3.0.10 on FreeBSD 7.0-RELEASE-p4 with PF.
I've noticed that in cache.log are a lot of entries as the one below
clientNatLookup: PF open failed: (13) Permission denied
I've found some information on the problem via Google.
One is "start Squid as root". Squid is started via rc.conf so I think
that is sorted.
There is a concern about rights on /dev/pf
Finally there's some advice
---- snip----
If you are performing any kind of transparent interception with squid
you will need one of the --*-transparent options. Without it squid will
fail to correctly spoof the clients IP.
----- snip ----
I do not fully understand where the "--*-transparent options" are to be
found. And if it's the solution to the problem.
Will someone Please enlighten me?
Thank you
/Leslie
More information about the freebsd-pf
mailing list