Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to configure HAVP and squid

    pfSense Packages
    3
    9
    6.6k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      firefox
      last edited by

      Hello

      I want to create a situation where all my internal network
      guard by HAVP

      I have already installed squid  :)

      Now
      How do I combine them
      How do I configure HAVP
      Scan or test everything that comes from squid

      Or maybe it's the opposite  ???
      Maybe HAVP need to check all Traffic Which goes in to squid  ???

      This is my version

      2.0.3-PRERELEASE (i386)
      built on Thu Feb 21 18:45:45 EST 2013
      FreeBSD 8.1-RELEASE-p13

      1 Reply Last reply Reply Quote 0
      • T
        Topper727
        last edited by

        I have attached a couple pictures to show how I get them to work together.

        I believe it goes from HVAP to Squid then to your computer

        at the bottom of Proxy Server General tab you will see

        Custom Settings
        Integrations
        never_direct allow all;cache_peer 127.0.0.1 parent 3125 0 name=havp no-query no-digest no-netdb-exchange default;

        if you setup correct.

        ![Snap 2013-04-09 at 17.03.48.png](/public/imported_attachments/1/Snap 2013-04-09 at 17.03.48.png)
        ![Snap 2013-04-09 at 17.03.48.png_thumb](/public/imported_attachments/1/Snap 2013-04-09 at 17.03.48.png_thumb)
        ![Snap 2013-04-09 at 17.05.20.png](/public/imported_attachments/1/Snap 2013-04-09 at 17.05.20.png)
        ![Snap 2013-04-09 at 17.05.20.png_thumb](/public/imported_attachments/1/Snap 2013-04-09 at 17.05.20.png_thumb)

        Dell 2950 g3 server
        Intel(R) Xeon(R) CPU E5430 @ 2.66GHz
        Current: 2000 MHz, Max: 2667 MHz
        8 CPUs: 2 package(s) x 4 core(s)
        8152 MiB and 600meg 10k drive
        Pfsense 2.4 .. Hoping to get the phpvirtualbox going again.

        1 Reply Last reply Reply Quote 0
        • T
          Topper727
          last edited by

          And here you can see if it works

          ![Snap 2013-04-09 at 17.14.43.png](/public/imported_attachments/1/Snap 2013-04-09 at 17.14.43.png)
          ![Snap 2013-04-09 at 17.14.43.png_thumb](/public/imported_attachments/1/Snap 2013-04-09 at 17.14.43.png_thumb)

          Dell 2950 g3 server
          Intel(R) Xeon(R) CPU E5430 @ 2.66GHz
          Current: 2000 MHz, Max: 2667 MHz
          8 CPUs: 2 package(s) x 4 core(s)
          8152 MiB and 600meg 10k drive
          Pfsense 2.4 .. Hoping to get the phpvirtualbox going again.

          1 Reply Last reply Reply Quote 0
          • F
            firefox
            last edited by

            I do not have this screen under status "proxy monitor"
            How do I add it ?

            100.png
            100.png_thumb

            1 Reply Last reply Reply Quote 0
            • N
              Nachtfalke
              last edited by

              @firefox:

              I do not have this screen under status "proxy monitor"
              How do I add it ?

              This is a feature of the squid3 package. You are probably using squid2.
              You can check this probably when looking into the access.log file of squid (if you have enabled logging).

              tail -F /var/squid/logs/access.log
              
              1 Reply Last reply Reply Quote 0
              • F
                firefox
                last edited by

                Thank you

                I'm trying to create utm like in this link

                http://fafadiatech.blogspot.co.il/2012/05/build-your-own-unified-threat.html

                But unfortunately, my understanding is lacking
                So I read and mark just according to the pictures

                The problem is I have a different version
                And I guess more new
                And some of the options are different

                For example in the "Snort Interfaces" pictere
                it says ENABLED - ENABLED - DISABLED

                in my Configuration it says ENABLED - DISABLED - DISABLED

                In addition
                Some sites I do not have access to them

                squid_interfaces.gif
                squid_interfaces.gif_thumb
                100000.png
                100000.png_thumb

                1 Reply Last reply Reply Quote 0
                • F
                  firefox
                  last edited by

                  I got into a bit

                  i install snort and squid gurd
                  and all internet Connection Gone crazy

                  I did not have access to all sites

                  At some sites received a message do not rely on this advertiser

                  I stopped these services snort and squidgurd
                  the Browsing not fall back

                  So I stopped also squid and havp
                  and still it didnt work

                  so i remove all Packages
                  Did not help
                  At the end I used the recovery option
                  The system went down and came after 30 minutes
                  Now the system in state it was before installation of snort and squidgurd

                  only squid and havp and it work

                  but how can i build this utm

                  1 Reply Last reply Reply Quote 0
                  • T
                    Topper727
                    last edited by

                    Maybe off topic.
                    About your sites being blocked. maybe look in blocked tab in Snort.  You might have add to some things to suppress list.  If you see the block in the alerts page you can hit the + on SID column and add it to suppress. Then you can unblock it and restart Snort to make it reread that config and not block for that reason anymore.

                    If nothing in Blocked TAB then maybe SquidGruard blocking.

                    Good to find out what is blocking. I have a complete setup like your are wanting. Just how to explain it all which I am not best at doing.

                    ![Snap 2013-04-12 at 22.22.47.png](/public/imported_attachments/1/Snap 2013-04-12 at 22.22.47.png)
                    ![Snap 2013-04-12 at 22.22.47.png_thumb](/public/imported_attachments/1/Snap 2013-04-12 at 22.22.47.png_thumb)
                    ![Snap 2013-04-12 at 22.27.12.png](/public/imported_attachments/1/Snap 2013-04-12 at 22.27.12.png)
                    ![Snap 2013-04-12 at 22.27.12.png_thumb](/public/imported_attachments/1/Snap 2013-04-12 at 22.27.12.png_thumb)

                    Dell 2950 g3 server
                    Intel(R) Xeon(R) CPU E5430 @ 2.66GHz
                    Current: 2000 MHz, Max: 2667 MHz
                    8 CPUs: 2 package(s) x 4 core(s)
                    8152 MiB and 600meg 10k drive
                    Pfsense 2.4 .. Hoping to get the phpvirtualbox going again.

                    1 Reply Last reply Reply Quote 0
                    • F
                      firefox
                      last edited by

                      First of all thanks for the help

                      Secondly
                      After the installation of snort or squidguard
                      I did not add any site to the list of blocked
                      Not in snort or squidguard
                      The only thing I can think of is the snort rules
                      But turning off the snort sites were not yet available
                      So I turned off the squidguard and still not yet available

                      I'm not much of it but I
                      Once you install a package
                      The package adds {I guess} system settings that might block access to the Internet

                      That at some point I had no internet access
                      So I used the Recovery

                      on the Subject of the guide I found online
                      I think this guide is aimed at people with more extensive knowledge
                      I think that was missing quite a few steps

                      This is not a problem to find a guide to Each of the packages
                      But not all together :-\ Bummer

                      Regarding the installation guide you prepared
                      Could upload it here?

                      1 Reply Last reply Reply Quote 0
                      • First post
                        Last post
                      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.