Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Installing antivirus and Squid

    Scheduled Pinned Locked Moved pfSense Packages
    3 Posts 2 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      Deadringers
      last edited by

      Hi there,

      I have had a google around but can't find anything that recent for doing this?

      I believe I am setup like this: (note just the one pfsense box running antivirus and squid)

      Client PC > HAVP antivirus  > Squid 3

      So my settings in HAVP – it is set to be the parent of squid proxy server.
      This seems to be working nicely.

      Is this correct and the right way to do it? 
      Just seems too simple so not sure if I have it setup right!

      Also how can I force people to connect to the havp proxy server rather than just going to the gateway?  Seems the settings are not automatically picked up?
      Thanks,
      Josh

      1 Reply Last reply Reply Quote 0
      • D
        Deadringers
        last edited by

        @Deadringers:

        Hi there,

        I have had a google around but can't find anything that recent for doing this?

        I believe I am setup like this: (note just the one pfsense box running antivirus and squid)

        Client PC > HAVP antivirus  > Squid 3

        So my settings in HAVP – it is set to be the parent of squid proxy server.
        This seems to be working nicely.

        Is this correct and the right way to do it? 
        Just seems too simple so not sure if I have it setup right!

        Also how can I force people to connect to the havp proxy server rather than just going to the gateway?  Seems the settings are not automatically picked up?
        Thanks,
        Josh

        Right got it working!

        It in fact should go:  Client > Squid > antivirus > Internet

        So now how to make clients (wireless phones, ipads etc incuded) all use the proxy and not just go through the gateway?

        1 Reply Last reply Reply Quote 0
        • N
          Nachtfalke
          last edited by

          AntiVirus:
          If you do not want to use HAVP anymore you can try the new squid 3.3.5 package which includes actual antivirus. Search the forum for the squiod 3.3.x thread.

          Mobile devices:
          How are these connected? Via VPN or via W(LAN) interface on your pfsense?

          In general you can use transparent proxy on squid and select the interfaces where squid should listen to.
          If the devices are connected via OpenVPN for example then you must OpenVPN to an interface (Interfaces –> assign) and then select this interface on squid.

          squid in transparent mode filters only http port 80
          non-transparent squid filters http and https port 443 but you need to configure the proxy IP on all devices.
          squid 3.3.5 can filter http and https in transparent mode.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.