How to allow non standard HTTP(S) ports through Squid?

In default installation Squid does not allow HTTP or HTTPS connections to non standard ports (defaults for HTTP is port 80 and for HTTPS port 443). If you try to connect to URLs like or your browser will show the Access Denied Squid page.

In order to allow connections to non standard ports add the required port number to UI / Squid Proxy / Settings / Default ACLs tab, fields Additional SSL Ports and Additional Safe Ports (both) as indicated on the following screenshot. If you have multiple ports, separate them by space.

Continue reading at


Posted in Linux | Leave a comment

Web Safety 5.2 is Release Candidate

The new version of Web Safety ICAP web filter for Squid proxy is ready to be called a Release Candidate. This version has the following improvements and fixes.

  1. Added management UI for various settings to enable Squid caching and tune the refresh patterns. It is now possible to reset the cache from UI.
  2. Added management of log levels (up to the submodule). It is now possible to increase the log lever for a specific module and leave default log level for other modules. Might be very helpful when troubleshooting Squid issues.
  3. The application is based on new version of domain categorization database, we have combined some categories and introduced new ones. Management UI for all sections (SSL bypass, Trusted Categories and Blocked Categories) is greatly improved.
  4. Added support for new “brotli” transfer encoding that is extensively used by YouTube and other Google services. The quality of filtering on YouTube shall be improved considerably.

This version is available from page. The status is Release Candidate, thus please use it in non critical environments. We still have time to do the testing and overall polishing as release is planned at the end of the year.

Next version will supposedly contain ClamAV antivirus. Other planned improvements are visible on GitHub Milestones. Please direct all your questions, suggestions and critic to

Best regards, Dev Team



Posted in Linux | Leave a comment

Cloud Guard URL re-writer for Squid proxy

We would like to introduce a new research project – cloud based URL rewriter for Squid proxy (code name Cloud Guard but it may change in the future). In short it is an URL rewriter that gets integrated with Squid (for Windows for now). The rewriter calls into* to process URL rewrite requests.

For now it works in Windows only. We plan to add support for Linux (amd64, MIPS, ARM based), FreeBSD and pfSense if there is be enough interest for that. The project is in the beta stage now so please use it as much as possible but on non production systems. Please direct your issues to

Signup/Login is available at . Please note, due to early stage of the project it is only possible to sign up from DE, FR, NL and UK. If you’d like to be notified of when the project is available in your country, please join our community forum or news letter (powered by mailchimp).



Posted in Linux | Leave a comment