Havp for 2.x config generation problem

imresz

Hello,

I have in trouble with havp package at 2.x series. The config good, and work if it's a standard proxy, after make change cli( the webinterface of course overwrite this ). The trouble of the package with the generated config file.

• When I configure the webinterface and set lan address to listen, the listen ip address will be the localhost ( tested from cli )
• After set up and modify method to transparent and rewrite cli listen address, it's not work properly.

dvserg

Can you post HAVP config file's here or to my PM?

imresz

Of course and thank's for the help:

# ============================================================
# HAVP config file
# This file generated automaticly with HAVP configurator (part of pfSense)
# (C)2008 Serg Dvoriancev
# email: dv_serg@mail.ru
# ============================================================

USER           havp
GROUP          havp
DAEMON         true
PIDFILE        /var/run/havp.pid

# For small home use, 8 should be minimum.
# For 500 users corporate use, start at 40.
SERVERNUMBER   3
MAXSERVERS     100

# log 
ACCESSLOG      /var/log/havp/access.log
ERRORLOG       /var/log/havp/havp.log

# syslog
USESYSLOG      true
SYSLOGNAME     havp
SYSLOGFACILITY daemon
SYSLOGLEVEL    info

# Level of HAVP logging
#  0 = Only serious errors and information
#  1 = Less interesting information is included
LOG_OKS        false
LOGLEVEL       0

# temp 
SCANTEMPFILE   /var/tmp/havpRAM/havp-XXXXXX
TEMPDIR        /var/tmp

#
DBRELOAD       180
TRANSPARENT    true

# if HAVP is used as parent proxy by some other proxy, this allows to write the real users IP to log, instead of proxy IP.
FORWARDED_IP    true
X_FORWARDED_FOR true

# havp is listening on 
PORT           8080
BIND_ADDRESS   127.0.0.1

# Path to template files 
TEMPLATEPATH   /usr/local/share/examples/havp/templates/en

# whitelist and blacklist
WHITELISTFIRST true
WHITELIST      /usr/local/etc/havp/whitelist
BLACKLIST      /usr/local/etc/havp/blacklist

# block file if error scanning
FAILSCANERROR  false

# scanner 
SCANNERTIMEOUT 10
RANGE           false

# stream scan disabled
STREAMSCANSIZE  0
SCANIMAGES      false
MAXSCANSIZE     1024000
KEEPBACKBUFFER  200000
KEEPBACKTIME    5
# After Trickling Time (seconds), some bytes are sent to browser to keep the connection alive
TRICKLING       10
TRICKLINGBYTES  1
# Downloads larger than MAXDOWNLOADSIZE will be blocked.
MAXDOWNLOADSIZE 0

# ClamAV Library Scanner (libclamav) 
ENABLECLAMLIB        false

# Clamd scanner (Clam daemon)
ENABLECLAMD          true
CLAMDSERVER          127.0.0.1
CLAMDPORT            3310

But other thing is pf rule used to redirect forward and I think it wrong:

rdr on bge0 inet proto tcp from any to (bge0) port = 8080 -> 127.0.0.1 port 8080

After list this rule I made some changes in havp conf, but the pf rule does not follow the changes.

imresz

Any help? :(

dvserg

Pls post you Havp GUI screenshot.

imresz

Sorry but I don't have problems about gui tool but I have trouble the backend.

For test I started to reinstall HAVP package for many times. After the issue I discovered that the settings come back ( proxy type, port, etc.. ) so I decided to clear file system after uninstall but settings come back again so I don't understand this. I don't verify the recirect pf rule after the reinstall. I's a good idea now.

Can you tell me the file structure of config saving and config directories about havp package? Why is the reason that after I clear directories and reinstall package the last config is come back?

I think I post ANY information not only the frontend but backend.