Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Can't seem to get Squid Cache + ClamAV to work

    Scheduled Pinned Locked Moved Cache/Proxy
    15 Posts 6 Posters 2.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      doktornotor Banned
      last edited by

      The pics don't work and the site has invalid cert. Use attachments.

      1 Reply Last reply Reply Quote 0
      • C
        Chrismallia
        last edited by

        Are you manually pointing the devices to the proxy? If not you must tick transparent http

        1 Reply Last reply Reply Quote 0
        • A
          Aiszaxs
          last edited by

          @doktornotor:

          The pics don't work and the site has invalid cert. Use attachments.

          Let me try again then:

          2017-02-28_00-17-13.png
          2017-02-28_00-17-13.png_thumb
          chrome_2017-02-28_00-17-44.png
          chrome_2017-02-28_00-17-44.png_thumb
          chrome_2017-02-28_00-18-13.png
          chrome_2017-02-28_00-18-13.png_thumb
          chrome_2017-02-28_00-18-42.png
          chrome_2017-02-28_00-18-42.png_thumb
          chrome_2017-02-28_00-19-15.png
          chrome_2017-02-28_00-19-15.png_thumb

          1 Reply Last reply Reply Quote 0
          • A
            Aiszaxs
            last edited by

            @Chrismallia:

            Are you manually pointing the devices to the proxy? If not you must tick transparent http

            The device, is that the offense server or the individual client?
            I tried enabling transparrent, without any luck.

            I use this page to test it.
            http://www.thinkbroadband.com/download.html

            1 Reply Last reply Reply Quote 0
            • D
              doktornotor Banned
              last edited by

              And the complaint is? The non-transparent proxy won't get used fox anything unless you point your clients to it.

              1 Reply Last reply Reply Quote 0
              • A
                Aiszaxs
                last edited by

                @doktornotor:

                And the complaint is? The non-transparent proxy won't get used fox anything unless you point your clients to it.

                There's no complaint - I'm just trying to get this to work and learn a little on the way!

                I'm no IT technician, I'm an Epidemiologist - so please use layman terms.

                1 Reply Last reply Reply Quote 0
                • C
                  Chrismallia
                  last edited by

                  The individual client.  Go to your browser setting and set it to use proxy, point it at the pfsense gateway and proxy port , EXAMPLE GATEWAY 192.168.0.1 port 3128

                  1 Reply Last reply Reply Quote 0
                  • D
                    doktornotor Banned
                    last edited by

                    @Aiszaxs:

                    I'm no IT technician, I'm an Epidemiologist - so please use layman terms.

                    Here's some medical documentation on configuring proxies in a browser: http://library.medicine.yale.edu/services/computing/configure-browser

                    Or you might try some automated infection vectors :P

                    1 Reply Last reply Reply Quote 0
                    • A
                      Aiszaxs
                      last edited by

                      @doktornotor:

                      @Aiszaxs:

                      I'm no IT technician, I'm an Epidemiologist - so please use layman terms.

                      Here's some medical documentation on configuring proxies in a browser: http://library.medicine.yale.edu/services/computing/configure-browser

                      Or you might try some automated infection vectors :P

                      @Chrismallia:

                      The individual client.  Go to your browser setting and set it to use proxy, point it at the pfsense gateway and proxy port , EXAMPLE GATEWAY 192.168.0.1 port 3128

                      Alright guys - I've added the proxy manually.
                      I'm currently trying to download a 100mb test file:

                      http://ipv4.download.thinkbroadband.com/100MB.zip

                      I assume I would have to download it once, then should it be cached right ?
                      However once I try and re download it, I still don't exceed my 50Mbps connection.
                      I assume when I would download it from the RAM of the PFsense box on gigabit lan, I would get way higher speeds right?

                      1 Reply Last reply Reply Quote 0
                      • A
                        Aiszaxs
                        last edited by

                        Seems like it might be working now.
                        I have download bursts up to 165Mbps which is tripple the speed of my WAN connection.

                        1 Reply Last reply Reply Quote 0
                        • D
                          doktornotor Banned
                          last edited by

                          Hint: There's the Real Time tab with logs, in case you need more info on what's going on.

                          1 Reply Last reply Reply Quote 0
                          • N
                            niebla
                            last edited by

                            Please try temporarily removing all other packages other than Squid, squidguard and lightsquid.

                            Are the  Squidm services started?

                            Does Lightsquid get reports?

                            Services are all running on my

                            2.4.2-RELEASE-p1 (amd64)
                            built on Tue Dec 12 13:45:26 CST 2017
                            FreeBSD 11.1-RELEASE-p6

                            Created the ClamAV log manually.

                            Have not tested ClamAV to confirm it is working but the services are running.

                            pf1.png
                            pf1.png_thumb
                            pf2.png
                            pf2.png_thumb

                            1 Reply Last reply Reply Quote 0
                            • E
                              Egrar
                              last edited by

                              :) enable transparent proxy settings, check if squid proxy works with this http://amibehindaproxy.com/, then check clamav services with the eicar.org virus test file - if you were able to download the file on your pc without being intercepted by squid+clamav services then clamav doesnt work (use http test file)

                              Take note I just noticed yesterday that clamav wasnt filtering the eicar virus test file, downloading it flags windows about the virus file.

                              1 Reply Last reply Reply Quote 0
                              • N
                                newUser2pfSense
                                last edited by

                                Have you looked at this post:
                                https://forum.pfsense.org/index.php?topic=117017.0

                                1 Reply Last reply Reply Quote 0
                                • First post
                                  Last post
                                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.