Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid Transparent HTTP Proxy, HA CARP, clamAV - websites load slowly.

    Scheduled Pinned Locked Moved Cache/Proxy
    1 Posts 1 Posters 581 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      patd
      last edited by

      This is my current setup, these are not my production IPs, these are just to serve as my example:

      Primary Firewall:

      WAN VIP: 1.1.1.146/29
      Physical WAN Interface IP: 1.1.1.147/29
      LAN VIP: 192.168.1.1/24
      Physical LAN Interface IP: 192.168.1.2/24

      Backup Firewall:

      WAN VIP: 1.1.1.146/29
      Physical WAN Interface IP: 1.1.1.148/29
      LAN VIP: 192.168.1.1/24
      Physical LAN Interface IP: 192.168.1.3/29

      Both Firewalls are configured with NAT, HA CARP, Squid Transparent HTTP Proxy and ClamAV

      I have configugred tcp_outgoing_address 1.1.1.146 in the custom options in squid so that all traffic leaving the proxy uses ip 1.1.1.146.  Without that option, squid will use the physical interface IP of 1.1.1.147 or 1.1.1.148 depending on if CARP has failed over.

      This is excellent up until the point I enable ClamAV.  Once I enable clamAV, websites load EXTREMELY slow or only partially.

      Anyone have any idea on why that is?

      Hardware specs are as follows:

      Intel Core i3 CPU540 3.70GHz

      x4 Cores

      500 Gig Hard Drive

      8 Gigs of RAM

      Gig NIC

      Thanks.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.