What Squid version and SquidGuard or DansGuardian?
-
E2/Dansguardian will look at the content of pages returned and decide whether to block or allow them based on a weighting calculation of "phrases" in the content. Blacklist blocking only looks at the URL. E2/Dansguardian will do both…
-
Ok, after looking around more i found out you don't need HAVP anymore - why nobody told me that here >:(
But it does not work and I'm not the only one. It's frustrating if you are new to pfSense and if you think that
packages you can install are working :(It's the latest 2.2 x64 and it's 2.2 since october (no update).
I installed squid3 and squidGuard-squid3.
I changed: "Service squid_clamav squidclamav.so"
I removed: "ldap configuration'Manager:Apassword@ldap.chtsanti.net?o=chtsanti?mermberUid?(&(objectClass=posixGroup)(cn=%s))'"
I changed to: "redirect https://192.168.0.1/clwarn.cgi"But clamd and squidGuard are not starting.
ps ax | grep -i fresclam or tail -f /var/log/clamav/freshclam.log tells me:grep: fresclam: No such file or directory grep: or: No such file or directory grep: tail: No such file or directory -
ps ax | grep -i fresclam or tail -f /var/log/clamav/freshclam.log tells me:
grep: fresclam: No such file or directory grep: or: No such file or directory grep: tail: No such file or directoryLULz… :D Those were supposed to be two separate commands....
ps ax | grep -i freshclamtail -f /var/log/clamav/freshclam.log -
lol - nobody told this guy neither: https://forum.pfsense.org/index.php?topic=87562.msg481208#msg481208
The output is:
2560 - Is 0:01.78 /usr/local/bin/freshclam --daemon -p /var/run/clamav/freshclam.pid 48264 0 S+ 0:00.00 grep -i freshclam getfile: Can't write 1448 bytes to /var/db/clamav/clamav-e7d674823863b493974d944efdd05df5.tmp/clamav-b69402a7fda033c3acff60eb7da8b732.tmp WARNING: Can't download main.cvd from database.clamav.net Received signal: wake up ClamAV update process started at Thu Jan 29 16:42:08 2015 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.98.5 Recommended version: 0.98.6 DON'T PANIC! Read http://www.clamav.net/support/faq getfile: Can't write 1448 bytes to /var/db/clamav/clamav-26487302f658d4bfe55c0f00608d77a0.tmp/clamav-51d39e1a1042c682cfd37d9fe5df5094.tmp WARNING: Can't download main.cvd from database.clamav.netOUTDATED? I just installed it…
-
OUTDATED? I just installed it…
Minor version changes that need a long update sequence. (clamav developer, freebsd package maintainer, pfsense package update, pfsense pbi build,…)
-
And what to do now?
-
And what to do now?
Update virus definitions, the version alert is just a warning, not a service stop.
-
I can't find a tab where i see something like update definitions…
-
I can't find a tab where i see something like update definitions…
run freshclam via console/ssh
-
still the same message:
getfile: Can't write 1448 bytes to /var/db/clamav/clamav-e1dc9c51263e0827cd2a0b973ba41d4e.tmp/clamav-d6889ae227e0a4134d824971de0a4a84.tmp WARNING: Can't download main.cvd from database.clamav.net -
Can your ping database.clamav.net from your box?
-
Yes
PING db.other.clamav.net (193.1.193.64): 56 data bytes 64 bytes from 193.1.193.64: icmp_seq=0 ttl=51 time=35.980 ms 64 bytes from 193.1.193.64: icmp_seq=1 ttl=51 time=40.412 ms 64 bytes from 193.1.193.64: icmp_seq=2 ttl=51 time=35.124 ms --- db.other.clamav.net ping statistics --- 3 packets transmitted, 3 packets received, 0.0% packet loss round-trip min/avg/max/stddev = 35.124/37.172/40.412/2.318 ms -
And now?
-
reinstall squid3 and see if that resolves the issue. i'm wondering if a folder wasn't created to store the av db
-
That did not help.
$ freshclam ClamAV update process started at Fri Jan 30 23:32:23 2015 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.98.5 Recommended version: 0.98.6 DON'T PANIC! Read http://www.clamav.net/support/faq ERROR: Can't download main.cvd from database.clamav.net Giving up on database.clamav.net... Update failed. Your network may be down or none of the mirrors listed in /usr/local/etc/freshclam.conf is working. -
Check first if there is another freshclam process running before trying to execute another one.
Look foe other squid 3 threads on 2.2. I've posted a really step by step guide to get it working on 64bits version.
-
I already saw that other threads.
Now i had this:
/var: write failed, filesystem is full getfile: Can't write 8192 bytes to /var/db/clamav/clamav-2786ca6469a9b9aafef1622f0f0f13be.tmp/clamav-f58a45f6084309de3a81938d410d397b.tmp WARNING: Can't download main.cvd from database.clamav.netAfter i saw the FULL i disabled "Use RAM Disks" and ClamAV works now.
But the squidGuard service still does not start. -
why were you using a ram disk? I can see using it if your using pfSense without any packages… Once you add packages, you need /var to not disappear
anything in the log for squidguard? Which version did you install?
/var/squid/logs/cache.log
/var/squidGuard/log -
-
why were you using a ram disk?
RAM is faster and takes stress away from the disk.
I increased the ram disk and thought after the virus definitions are now there i can turn ram disk
on again. But when i do that clamd does not start.anything in the log for squidguard? Which version did you install?
squidGuard-squid3 1.4_7 pkg v.1.9.6
squidGuard/log is empty.
Here is some stuff from squid/logs/cache.log:
Shared object "libldap-2.4.so.2" not found, required by "squidGuard" 2015/01/31 13:50:37 kid1| WARNING: redirector #Hlpr0 exited Shared object "libldap-2.4.so.2" not found, required by "squidGuard" 2015/01/31 13:50:37 kid1| Warning: empty ACL: acl throttle_exts urlpath_regex -i "/var/squid/acl/throttle_exts.acl" Shared object "libldap-2.4.so.2" not found, required by "squidGuard" Shared object "libldap-2.4.so.2" not found, required by "squidGuard" 2015/01/31 13:50:37| pinger: Initialising ICMP pinger ... 2015/01/31 13:50:37| icmp_sock: (1) Operation not permitted 2015/01/31 13:50:37| pinger: Unable to start ICMP pinger. 2015/01/31 13:50:37| icmp_sock: (1) Operation not permitted 2015/01/31 13:50:37| pinger: Unable to start ICMPv6 pinger. 2015/01/31 13:50:37| FATAL: pinger: Unable to open any ICMP sockets. Shared object "libldap-2.4.so.2" not found, required by "squidGuard" Shared object "libldap-2.4.so.2" not found, required by "squidGuard" 2015/01/31 13:50:40 kid1| Warning: empty ACL: acl throttle_exts urlpath_regex -i "/var/squid/acl/throttle_exts.acl" 2015/01/31 13:50:40| pinger: Initialising ICMP pinger ... 2015/01/31 13:50:40| icmp_sock: (1) Operation not permitted 2015/01/31 13:50:40| pinger: Unable to start ICMP pinger. 2015/01/31 13:50:40| icmp_sock: (1) Operation not permitted 2015/01/31 13:50:40| pinger: Unable to start ICMPv6 pinger. 2015/01/31 13:50:40| FATAL: pinger: Unable to open any ICMP sockets. 2015/01/31 13:50:47 kid1| Warning: empty ACL: acl throttle_exts urlpath_regex -i "/var/squid/acl/throttle_exts.acl" 2015/01/31 13:50:47| pinger: Initialising ICMP pinger ... 2015/01/31 13:50:47| icmp_sock: (1) Operation not permitted 2015/01/31 13:50:47| pinger: Unable to start ICMP pinger. 2015/01/31 13:50:47| icmp_sock: (1) Operation not permitted 2015/01/31 13:50:47| pinger: Unable to start ICMPv6 pinger. 2015/01/31 13:50:47| FATAL: pinger: Unable to open any ICMP sockets. FATAL: Received Segment Violation...dying. CPU Usage: 659.029 seconds = 69.054 user + 589.975 sys Maximum Resident Size: 154112 KB Page faults with physical i/o: 12 2015/01/31 14:01:45 kid1| Starting Squid Cache version 3.4.10 for amd64-portbld-freebsd10.1... 2015/01/31 14:01:45| pinger: Initialising ICMP pinger ... 2015/01/31 14:01:45| icmp_sock: (1) Operation not permitted 2015/01/31 14:01:45| pinger: Unable to start ICMP pinger. 2015/01/31 14:01:45| icmp_sock: (1) Operation not permitted 2015/01/31 14:01:45| pinger: Unable to start ICMPv6 pinger. 2015/01/31 14:01:45| FATAL: pinger: Unable to open any ICMP sockets. 2015/01/31 16:38:35 kid1| Starting Squid Cache version 3.4.10 for amd64-portbld-freebsd10.1... 2015/01/31 16:38:36| pinger: Initialising ICMP pinger ... 2015/01/31 16:38:36| icmp_sock: (1) Operation not permitted 2015/01/31 16:38:36| pinger: Unable to start ICMP pinger. 2015/01/31 16:38:36| icmp_sock: (1) Operation not permitted 2015/01/31 16:38:36| pinger: Unable to start ICMPv6 pinger. 2015/01/31 16:38:36| FATAL: pinger: Unable to open any ICMP sockets. 2015/01/31 16:10:32 kid1| Warning: empty ACL: acl throttle_exts urlpath_regex -i "/var/squid/acl/throttle_exts.acl" 2015/01/31 16:10:32| pinger: Initialising ICMP pinger ... 2015/01/31 16:10:32| icmp_sock: (1) Operation not permitted
