Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Updated packages, incoming breakage, feedback needed

    Scheduled Pinned Locked Moved pfSense Packages
    31 Posts 14 Posters 17.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      dvserg
      last edited by

      "General settings->Proxy port" need default value '3128'
      If defined "transparent proxy" must be disable field Proxy post"

      SquidGuardDoc EN  RU Tutorial
      Localization ru_PFSense

      1 Reply Last reply Reply Quote 0
      • F
        fernandotcl
        last edited by

        @dvserg:

        "General settings->Proxy port" need default value '3128'

        There's a default value., and it is 3128 The code that does default values is still only in HEAD, though. Gonna be backported soon.

        @dvserg:

        If defined "transparent proxy" must be disable field Proxy post"

        I don't think that's a good idea. People might want to use the proxy as both a transparent proxy and connect to it directly. For example, set the proxy as transparent for LAN, while users from OPT1 might want to connect to the proxy directly.

        1 Reply Last reply Reply Quote 0
        • R
          raj2569
          last edited by

          Hi,

          If the clamav package is resonably stable I can test HAVP with it. Are more changes in ClamAV expected?

          raj

          1 Reply Last reply Reply Quote 0
          • F
            fernandotcl
            last edited by

            Yeah, all those packages are reasonably stable, if you consider that they're not likely that they'll brick your machine (however, read the big fat warnings posted earlier). The problems you should encounter could be related to the installation. If it installs, it's probably working.

            I'd like to integrate ClamAV with HAVP (that was the initial plan) and maybe Squid, so that we can get rid of Viralator. Take a look at clamav.inc. It can be configured to add new fields as new packages are installed. I got a bit sidetracked atm, but in a few days I should be trying to integrate HAVP with ClamAV and Squid.

            1 Reply Last reply Reply Quote 0
            • R
              raj2569
              last edited by

              I am bit free now, So I will start working on HAVP and ClamAV. Do drop me a line when you are free so that we can coordinate and avoid working on the same thing.

              raj

              1 Reply Last reply Reply Quote 0
              • R
                raj2569
                last edited by

                Tested HAVP and is woking fine. Basically HAVP uses only the ClamAV Libraries for scanning. If some one else has any problems with HAVP or ClamAV pl report.

                raj

                1 Reply Last reply Reply Quote 0
                • S
                  sullrich
                  last edited by

                  Anyone testing these patches we have MFC'd the trasnparent bits to enable these services to work transparently.

                  1 Reply Last reply Reply Quote 0
                  • ?
                    Guest
                    last edited by

                    Under the Metallic theme (and the Metallic theme only) both the ClamAV and HAVP package configuration options appear to the right of the PfSense frame.  The settings appear properly, but the whole box is shifted to the right leaving a big empty white box where the configurations should appear.

                    1 Reply Last reply Reply Quote 0
                    • B
                      billm
                      last edited by

                      @submicron:

                      Under the Metallic theme (and the Metallic theme only) both the ClamAV and HAVP package configuration options appear to the right of the PfSense frame.  The settings appear properly, but the whole box is shifted to the right leaving a big empty white box where the configurations should appear.

                      Heh I've seen that before.  Had to do with developing in HEAD and then backporting to RELENG_1.  $pgtitle changes I believe.  Hopefully that tidbit helps fix this problem :)

                      –Bill

                      pfSense core developer
                      blog - http://www.ucsecurity.com/
                      twitter - billmarquette

                      1 Reply Last reply Reply Quote 0
                      • R
                        raj2569
                        last edited by

                        Updated ClamAV with Transparency support. To get Transparency in RELENG_1 branch (ie released versions) add the following  in your /etc/inc/filter.inc

                        #Add package specific nat rule inside this anchor
                                $natrules .= "rdr-anchor "rdr-package/*" \n";

                        After this

                        
                        if (is_package_installed('clamav') && file_exists('/usr/local/pkg/clamav.inc')) {
                                        require_once('clamav.inc');
                                        $natrules .= clamav_generate_rules('nat');
                                }
                        
                        

                        Please execute cvs_sync.sh releng_1 from command shell, before attempting the patch. Reboot after the patch and then install the new HAVP package.

                        Please report any feedback about this package in this thread.

                        raj

                        1 Reply Last reply Reply Quote 0
                        • S
                          Sifter
                          last edited by

                          I am trying to get rid of squid so I can reinstall it.  I tried through the gui first, it just hangs.  So I did it through the pkg_delete command line tool.  pkg_info reveals no such package now.  But when I go to install packages, it still shows as installed, thus not allowing me to install/reinstall.

                          1 Reply Last reply Reply Quote 0
                          • H
                            hoba
                            last edited by

                            @Sifter:

                            I am trying to get rid of squid so I can reinstall it.  I tried through the gui first, it just hangs.  So I did it through the pkg_delete command line tool.  pkg_info reveals no such package now.  But when I go to install packages, it still shows as installed, thus not allowing me to install/reinstall.

                            Download the config.xml from diagnostics>backup/restore and check "do not backup package information" and restore the config again. Should solve the problem.

                            1 Reply Last reply Reply Quote 0
                            • S
                              Sifter
                              last edited by

                              ok I did that, the package installed.  I went to services to try to start it, and got the following error:  "(squid): Failed to verify one of the swap directories, Check cache.log for details. Run 'squid -z' to create swap directories if needed, or if running Squid for the first time".

                              So I ran squid -z and no longer see that error message, but whenever I hit start through the gui, it just goes back to stopped.

                              1 Reply Last reply Reply Quote 0
                              • J
                                jola
                                last edited by

                                the same about squid at here, i did sync to RELENG_1.
                                i go to console and do:

                                • netstat -na | grep :3128 (for checking squid is running or not) but not found.
                                • check tmp/rules.debug , but not rule for squid in mode transparent.
                                  Thanks.
                                1 Reply Last reply Reply Quote 0
                                • R
                                  raj2569
                                  last edited by

                                  More Updates to HAVP Package,

                                  • Package now uses latest verison of HAVP
                                  • You can exclude certain IPs from transparent proxy
                                  • Added 3 more havp options to web interface.
                                  • Transparency status is now persistent across reboot.

                                  Give it a whirl, if it works well, this will become beta and then release version.

                                  raj

                                  1 Reply Last reply Reply Quote 0
                                  • J
                                    jola
                                    last edited by

                                    Thanks raj,
                                    Do you add options for using HAVP Package with squid cache? It will great.
                                    Thanks you.

                                    1 Reply Last reply Reply Quote 0
                                    • D
                                      Doufer
                                      last edited by

                                      i'm unable to either deinstall or reinstall squid

                                      squid.xml

                                      Warning: delete_package(squid.inc): failed to open stream: No such file or directory in /etc/inc/pkg-utils.inc on line 652 Fatal error: delete_package(): Failed opening required 'squid.inc' (include_path='.:/etc/inc:/usr/local/www:/usr/local/captiveportal:/usr/local/pkg') in /etc/inc/pkg-utils.inc on line 652

                                      1 Reply Last reply Reply Quote 0
                                      • D
                                        Doufer
                                        last edited by

                                        @Sifter:

                                        I am trying to get rid of squid so I can reinstall it.  I tried through the gui first, it just hangs.  So I did it through the pkg_delete command line tool.  pkg_info reveals no such package now.  But when I go to install packages, it still shows as installed, thus not allowing me to install/reinstall.

                                        I exactly have this same problem! Glad to know I'm not the only one.

                                        1 Reply Last reply Reply Quote 0
                                        • R
                                          raj2569
                                          last edited by

                                          @jola:

                                          Do you add options for using HAVP Package with squid cache? It will great.

                                          Yes, There is an option to specify parent proxy in thenew version.

                                          raj

                                          1 Reply Last reply Reply Quote 0
                                          • T
                                            trendchiller
                                            last edited by

                                            Raj

                                            is there any thing i have to look at when using havp ?
                                            does the package autocreate the "transparent-rule" ?
                                            cause it would not work when i tried last time …  :'(

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.