<html class="apple-mail-supports-explicit-dark-mode"><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto">I wanted to share my findings I had some help a while back with working on this. Resolution: Bug <a class="issue tracker-1 status-1 priority-4 priority-default created-by-me" title="Bug: cache_object://URL Scheme is removed in Squid-6 (New)" href="https://redmine.pfsense.org/issues/15410" style="box-sizing: border-box; color: rgb(17, 102, 153); text-decoration: none; overflow-wrap: break-word;">#15410</a> - cache_object:// scheme removed in Squid 6. squidclient sends Proxy-Authorization header which Squid 6 rejects for squid-internal-mgr endpoint.Fix: Modified /usr/local/www/status_squid.php to use curl instead of squidclient, sending Authorization header directly:exec("/usr/local/bin/curl -s --max-time 10 -u 'admin:PASSWORD' <a class="external" href="http://<interface_ip>:3128/squid-internal-mgr/info" style="box-sizing: border-box; color: rgb(17, 102, 153); text-decoration: none; overflow-wrap: break-word; background-position: 0% 60%; background-repeat: no-repeat; padding-left: 12px; background-image: url("../images/external.png");">http://<interface_ip>:3128/squid-internal-mgr/info</a>", $result);Note: cachemgr_passwd is configured in squid.conf but under normal circumstances manager access is controlled by manager_hosts ACL (src 127.0.0.1 ::1 192.168.1.1). Password is only required because curl/squidclient must authenticate — direct browser access from allowed IPs would prompt via WWW-Authenticate challenge.Upstream bug: pfSense bugtracker <a class="issue tracker-1 status-1 priority-4 priority-default created-by-me" title="Bug: cache_object://URL Scheme is removed in Squid-6 (New)" href="https://redmine.pfsense.org/issues/15410" style="box-sizing: border-box; color: rgb(17, 102, 153); text-decoration: none; overflow-wrap: break-word;">#15410</a><div dir="ltr">Sent from my iPhone</div></body></html>