Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Havp for 2.x config generation problem

    Scheduled Pinned Locked Moved pfSense Packages
    6 Posts 2 Posters 2.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      imresz
      last edited by

      Hello,

      I have in trouble with havp package at 2.x series. The config good, and work if it's a standard proxy, after make change cli( the webinterface of course overwrite this ). The trouble of the package with the generated config file.

      • When I configure the webinterface and set lan address to listen, the listen ip address will be the localhost ( tested from cli )
      • After set up and modify method to transparent and rewrite cli listen address, it's not work properly.
      1 Reply Last reply Reply Quote 0
      • D
        dvserg
        last edited by

        Can you post HAVP config file's here or to my PM?

        SquidGuardDoc EN  RU Tutorial
        Localization ru_PFSense

        1 Reply Last reply Reply Quote 0
        • I
          imresz
          last edited by

          Of course and thank's for the help:

          # ============================================================
          # HAVP config file
          # This file generated automaticly with HAVP configurator (part of pfSense)
          # (C)2008 Serg Dvoriancev
          # email: dv_serg@mail.ru
          # ============================================================
          
          USER           havp
          GROUP          havp
          DAEMON         true
          PIDFILE        /var/run/havp.pid
          
          # For small home use, 8 should be minimum.
          # For 500 users corporate use, start at 40.
          SERVERNUMBER   3
          MAXSERVERS     100
          
          # log 
          ACCESSLOG      /var/log/havp/access.log
          ERRORLOG       /var/log/havp/havp.log
          
          # syslog
          USESYSLOG      true
          SYSLOGNAME     havp
          SYSLOGFACILITY daemon
          SYSLOGLEVEL    info
          
          # Level of HAVP logging
          #  0 = Only serious errors and information
          #  1 = Less interesting information is included
          LOG_OKS        false
          LOGLEVEL       0
          
          # temp 
          SCANTEMPFILE   /var/tmp/havpRAM/havp-XXXXXX
          TEMPDIR        /var/tmp
          
          #
          DBRELOAD       180
          TRANSPARENT    true
          
          # if HAVP is used as parent proxy by some other proxy, this allows to write the real users IP to log, instead of proxy IP.
          FORWARDED_IP    true
          X_FORWARDED_FOR true
          
          # havp is listening on 
          PORT           8080
          BIND_ADDRESS   127.0.0.1
          
          # Path to template files 
          TEMPLATEPATH   /usr/local/share/examples/havp/templates/en
          
          # whitelist and blacklist
          WHITELISTFIRST true
          WHITELIST      /usr/local/etc/havp/whitelist
          BLACKLIST      /usr/local/etc/havp/blacklist
          
          # block file if error scanning
          FAILSCANERROR  false
          
          # scanner 
          SCANNERTIMEOUT 10
          RANGE           false
          
          # stream scan disabled
          STREAMSCANSIZE  0
          SCANIMAGES      false
          MAXSCANSIZE     1024000
          KEEPBACKBUFFER  200000
          KEEPBACKTIME    5
          # After Trickling Time (seconds), some bytes are sent to browser to keep the connection alive
          TRICKLING       10
          TRICKLINGBYTES  1
          # Downloads larger than MAXDOWNLOADSIZE will be blocked.
          MAXDOWNLOADSIZE 0
          
          # ClamAV Library Scanner (libclamav) 
          ENABLECLAMLIB        false
          
          # Clamd scanner (Clam daemon)
          ENABLECLAMD          true
          CLAMDSERVER          127.0.0.1
          CLAMDPORT            3310
          

          But other thing is pf rule used to redirect forward and I think it wrong:

          rdr on bge0 inet proto tcp from any to (bge0) port = 8080 -> 127.0.0.1 port 8080
          

          After list this rule I made some changes in havp conf, but the pf rule does not follow the changes.

          1 Reply Last reply Reply Quote 0
          • I
            imresz
            last edited by

            Any help? :(

            1 Reply Last reply Reply Quote 0
            • D
              dvserg
              last edited by

              Pls post you Havp GUI screenshot.

              SquidGuardDoc EN  RU Tutorial
              Localization ru_PFSense

              1 Reply Last reply Reply Quote 0
              • I
                imresz
                last edited by

                Sorry but I don't have problems about gui tool but I have trouble the backend.

                For test I started to reinstall HAVP package for many times. After the issue I discovered that the settings come back ( proxy type, port, etc.. ) so I decided to clear file system after uninstall but settings come back again so I don't understand this. I don't verify the recirect pf rule after the reinstall. I's a good idea now.

                Can you tell me the file structure of config saving and config directories about havp package? Why is the reason that after I clear directories and reinstall package the last config is come back?

                I think I post ANY information not only the frontend but backend.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.