Reply
New Member
Posts: 11
Registered: ‎07-15-2016

Enable squid proxy

Hey,

 

Can anyone tell me what the best way is to use squid3 as transparent proxy on my device? (USG4)

I would love to get the access logs so I can forward them to my Wazuh ELK stack.

Ubiquiti Employee
Posts: 1,125
Registered: ‎02-28-2017
Kudos: 339
Solutions: 114

Re: Enable squid proxy

Squid isn't technically supported by the controller, so the configuration won't stick without a config.gateway.json... but you can experiment with the nodes in Edge OS (CLI session to the USG) and hit the "?" key for options with each command. An example of a basic configuration would be:

update webproxy blacklists
configure
set service webproxy cache-size 0
set service webproxy default-port 3128
set service webproxy enable-access-log
set service webproxy listen-address 192.168.1.1
set service webproxy mem-cache-size 5
set service webproxy url-filtering squidguard auto-update update-hour 6
set service webproxy url-filtering squidguard block-category adult
set service webproxy url-filtering squidguard block-category phishing
set service webproxy url-filtering squidguard block-category malware
set service webproxy url-filtering squidguard block-category strict_redirector
set service webproxy url-filtering squidguard default-action allow
set service webproxy url-filtering squidguard log all
set service webproxy url-filtering squidguard redirect-url 'http://www.google.com'
commit;exit


Then you can reference the config.gateway.json article into making it persistent when you have a working solution. There should also be various working squid examples scattered across the forums.

Brandon Jaffe | UniFi Routing & Switching | Austin, TX
Highlighted
New Member
Posts: 11
Registered: ‎07-15-2016

Re: Enable squid proxy

Then why is it installed? If it aint supported?
Ubiquiti Employee
Posts: 1,125
Registered: ‎02-28-2017
Kudos: 339
Solutions: 114

Re: Enable squid proxy

@it-lines EdgeOS is the operating system of the USG which supports plenty of configuration options including Squid. 
The UniFi controller is the SDN platform that is the central management console for all of your UniFi devices. The UniFi controller does not support Squid yet, yet the OS that runs directly on the USG does. 

Brandon Jaffe | UniFi Routing & Switching | Austin, TX
Reply