Installing antivirus and Squid



  • Hi there,

    I have had a google around but can't find anything that recent for doing this?

    I believe I am setup like this: (note just the one pfsense box running antivirus and squid)

    Client PC > HAVP antivirus  > Squid 3

    So my settings in HAVP – it is set to be the parent of squid proxy server.
    This seems to be working nicely.

    Is this correct and the right way to do it? 
    Just seems too simple so not sure if I have it setup right!

    Also how can I force people to connect to the havp proxy server rather than just going to the gateway?  Seems the settings are not automatically picked up?
    Thanks,
    Josh



  • @Deadringers:

    Hi there,

    I have had a google around but can't find anything that recent for doing this?

    I believe I am setup like this: (note just the one pfsense box running antivirus and squid)

    Client PC > HAVP antivirus  > Squid 3

    So my settings in HAVP – it is set to be the parent of squid proxy server.
    This seems to be working nicely.

    Is this correct and the right way to do it? 
    Just seems too simple so not sure if I have it setup right!

    Also how can I force people to connect to the havp proxy server rather than just going to the gateway?  Seems the settings are not automatically picked up?
    Thanks,
    Josh

    Right got it working!

    It in fact should go:  Client > Squid > antivirus > Internet

    So now how to make clients (wireless phones, ipads etc incuded) all use the proxy and not just go through the gateway?



  • AntiVirus:
    If you do not want to use HAVP anymore you can try the new squid 3.3.5 package which includes actual antivirus. Search the forum for the squiod 3.3.x thread.

    Mobile devices:
    How are these connected? Via VPN or via W(LAN) interface on your pfsense?

    In general you can use transparent proxy on squid and select the interfaces where squid should listen to.
    If the devices are connected via OpenVPN for example then you must OpenVPN to an interface (Interfaces –> assign) and then select this interface on squid.

    squid in transparent mode filters only http port 80
    non-transparent squid filters http and https port 443 but you need to configure the proxy IP on all devices.
    squid 3.3.5 can filter http and https in transparent mode.


Log in to reply