Scribd Logo
Upload

Welcome to Scribd!

  • Transparent Proxyd in Ubuntu

    Uploaded by

    Om Mas
    15 views4 pages
    The document describes two examples of configuring Squid and HAVP (ClamAV) as a transparent proxy in Ubuntu. The first example sets up Squid as a transparent proxy and HAVP as a virus scanner, redirecting port 80 traffic through port 3128. The second example sets up HAVP as a transparent proxy and Squid as a parent proxy, redirecting port 80 traffic through port 8080. Both examples require installing Squid, HAVP, and ClamAV, configuring firewall rules and the Squid and HAVP configuration files, and restarting the Squid and HAVP services.

    Original Description:

    Original Title

    Configuring Squid

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document describes two examples of configuring Squid and HAVP (ClamAV) as a transparent proxy in Ubuntu. The first example sets up Squid as a transparent proxy and HAVP as a virus scanner, redirecting port 80 traffic through port 3128. The second example sets up HAVP as a transparent proxy and Squid as a parent proxy, redirecting port 80 traffic through port 8080. Both examples require installing Squid, HAVP, and ClamAV, configuring firewall rules and the Squid and HAVP configuration files, and restarting the Squid and HAVP services.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    15 views4 pages

    Transparent Proxyd in Ubuntu

    Uploaded by

    Om Mas
    The document describes two examples of configuring Squid and HAVP (ClamAV) as a transparent proxy in Ubuntu. The first example sets up Squid as a transparent proxy and HAVP as a virus scanner, redirecting port 80 traffic through port 3128. The second example sets up HAVP as a transparent proxy and Squid as a parent proxy, redirecting port 80 traffic through port 8080. Both examples require installing Squid, HAVP, and ClamAV, configuring firewall rules and the Squid and HAVP configuration files, and restarting the Squid and HAVP services.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    of 4

    Transparent Proxyd in Ubuntu

    Configuring Squid & HAVP(ClamAV) in Ubuntu :Example 1

    In this article, it is assumed that Squid has been installed and running well, because the
    contents of this article will not discuss the installation of squid. The following is just an
    example of the steps in configuring Squid as a transparent proxy and HAVP (in collaboration
    with ClamAV) as a virus scanner (parent proxy).

    1. Information schema.

    Transparent Proxy*
    192.168.0.253:3128
    || [eth1]
    || ||
    [Intranet]--------[Squid]-+-[HAVP]--------[Internet]
    || ||
    [eth0] Parent Proxy
    192.168.0.0/24 127.0.0.1:8080
    ||
    ||
    [ClamAV]

    2. Installing HAVP, ClamAV and ClamAV update virus databases for the first time.

    ~# apt-get install havp clamav


    ~# freshclam

    3. Add the following line into file “/etc/squid/squid.conf”.

    cache_peer 127.0.0.1 parent 8080 0 no-query no-diggest no-netdb-exchange default

    4. Make sure the configuration files in “/etc/havp/havp.config”, at least as the following


    lines.

    USER havp
    GROUP havp
    DAEMON true
    PIDFILE /var/run/havp/havp.pid
    SERVERNUMBER 20 # please adjust itself
    MAXSERVERS 100 # please adjust ifself
    ACCESSLOG /var/log/havp/access.log
    ERRORLOG /var/log/havp/havp.log
    USESYSLOG false
    SYSLOGNAME havp
    SYSLOGFACILITY daemon
    SYSLOGLEVEL info

    Eng. Omar Maslamani


    Transparent Proxyd in Ubuntu
    LOG_OKS true
    LOGLEVEL 1
    SCANTEMPFILE /var/spool/havp/havp-XXXXXX
    TEMPDIR /var/tmp
    DBRELOAD 60
    TRANSPARENT false
    FORWARDED_IP true
    PORT 8080
    BIND_ADDRESS 127.0.0.1
    TEMPLATEPATH /etc/havp/templates/en
    ENABLECLAMLIB true
    CLAMDBDIR /var/lib/clamav
    ENABLECLAMD false
    ENABLEFPROT false
    ENABLEAVG false
    ENABLEAVESERVER false
    ENABLESOPHIE false
    ENABLETROPHIE false
    ENABLENOD32 false
    ENABLEAVAST false
    ENABLEARCAVIR false
    ENABLEDRWEB false

    5. Make sure the rules in the IPTables NAT in this case as step 1, at least as the following
    lines.

    ~# iptables -t nat -A PREROUTING -j REDIRECT -p tcp -i eth0 -s 192.168.0.0/24 –dport 80 –


    to-ports 3128
    ~# iptables -t nat -A POSTROUTING -j MASQUERADE -p tcp -s 192.168.0.0/24 -o eth1

    6. Restart Squid and HAVP service.

    ~# squid -k reconfigure
    ~# /etc/init.d/havp force-reload
    - or -
    ~# /etc/init.d/squid restart
    ~# /etc/init.d/havp restart

    7. Finish.

    *) Don’t forget to open tcp ports 80 & 3128.

    Eng. Omar Maslamani


    Transparent Proxyd in Ubuntu
    Configuring Squid & HAVP(ClamAV) in Ubuntu : Example 2

    In this article, it is assumed that Squid has been installed and running well, because the
    contents of this article will not discuss the installation of squid. The following is just an
    example of the steps in configuring Squid as a parent proxy (not transparent proxy) and
    HAVP (in collaboration with ClamAV) as a virus scanner (transparent proxy).

    1. Information schema.

    [ClamAV]
    ||
    ||
    Transparent Proxy*
    192.168.0.253:8080
    || [eth1]
    || ||
    [Intranet]--------[HAVP]-+-[Squid]--------[Internet]
    || ||
    [eth0] Parent Proxy
    192.168.0.0/24 127.0.0.1:3128

    2. Installing HAVP, ClamAV and ClamAV update virus databases for the first time.

    ~# apt-get install havp clamav


    ~# freshclam

    3. Add the following line into file “/etc/squid/squid.conf”. If the existing configuration, like
    this “http_port 192.168.0.253:3128 transparent”, please change the following lines like this.

    http_port 127.0.0.1:3128

    4. Make sure the configuration files in “/etc/havp/havp.config”, at least as the following


    lines.

    USER havp
    GROUP havp
    DAEMON true
    PIDFILE /var/run/havp/havp.pid
    SERVERNUMBER 20 # please adjust itself
    MAXSERVERS 100 # please adjust ifself
    ACCESSLOG /var/log/havp/access.log
    ERRORLOG /var/log/havp/havp.log
    USESYSLOG false
    SYSLOGNAME havp
    SYSLOGFACILITY daemon

    Eng. Omar Maslamani


    Transparent Proxyd in Ubuntu
    SYSLOGLEVEL info
    LOG_OKS true
    LOGLEVEL 1
    SCANTEMPFILE /var/spool/havp/havp-XXXXXX
    TEMPDIR /var/tmp
    DBRELOAD 60
    TRANSPARENT true
    FORWARDED_IP true
    PARENTPROXY 127.0.0.1
    PARENTPORT 3128
    PORT 8080
    BIND_ADDRESS 192.168.0.253
    TEMPLATEPATH /etc/havp/templates/en
    ENABLECLAMLIB true
    CLAMDBDIR /var/lib/clamav
    ENABLECLAMD false
    ENABLEFPROT false
    ENABLEAVG false
    ENABLEAVESERVER false
    ENABLESOPHIE false
    ENABLETROPHIE false
    ENABLENOD32 false
    ENABLEAVAST false
    ENABLEARCAVIR false
    ENABLEDRWEB false

    5. Make sure the rules in the IPTables NAT in this case as step 1, at least as the following
    lines. If the IPTables NAT rule to redirect port prior to 3128, please change it to 8080.

    ~# iptables -t nat -A PREROUTING -j REDIRECT -p tcp -i eth0 -s 192.168.0.0/24 –dport 80 –


    to-ports 8080
    ~# iptables -t nat -A POSTROUTING -j MASQUERADE -p tcp -s 192.168.0.0/24 -o eth1

    6. Restart Squid and HAVP service.

    ~# squid -k reconfigure
    ~# /etc/init.d/havp force-reload
    - or -
    ~# /etc/init.d/squid restart
    ~# /etc/init.d/havp restart

    7. Finish.

    *) Don’t forget to open tcp ports 80 & 8080.

    Eng. Omar Maslamani

    You might also like