Scribd
Upload
22 views

Transparent Proxyd in Ubuntu

The document describes two examples of configuring Squid and HAVP (ClamAV) as a transparent proxy in Ubuntu. The first example sets up Squid as a transparent proxy and HAVP as a virus scanner, redirecting port 80 traffic through port 3128. The second example sets up HAVP as a transparent proxy and Squid as a parent proxy, redirecting port 80 traffic through port 8080. Both examples require installing Squid, HAVP, and ClamAV, configuring firewall rules and the Squid and HAVP configuration files, and restarting the Squid and HAVP services.

Uploaded by

Om Mas
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
22 views

Transparent Proxyd in Ubuntu

The document describes two examples of configuring Squid and HAVP (ClamAV) as a transparent proxy in Ubuntu. The first example sets up Squid as a transparent proxy and HAVP as a virus scanner, redirecting port 80 traffic through port 3128. The second example sets up HAVP as a transparent proxy and Squid as a parent proxy, redirecting port 80 traffic through port 8080. Both examples require installing Squid, HAVP, and ClamAV, configuring firewall rules and the Squid and HAVP configuration files, and restarting the Squid and HAVP services.

Uploaded by

Om Mas
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 4

Transparent Proxyd in Ubuntu

Configuring Squid & HAVP(ClamAV) in Ubuntu :Example 1

In this article, it is assumed that Squid has been installed and running well, because the
contents of this article will not discuss the installation of squid. The following is just an
example of the steps in configuring Squid as a transparent proxy and HAVP (in collaboration
with ClamAV) as a virus scanner (parent proxy).

1. Information schema.

Transparent Proxy*
192.168.0.253:3128
|| [eth1]
|| ||
[Intranet]--------[Squid]-+-[HAVP]--------[Internet]
|| ||
[eth0] Parent Proxy
192.168.0.0/24 127.0.0.1:8080
||
||
[ClamAV]

2. Installing HAVP, ClamAV and ClamAV update virus databases for the first time.

~# apt-get install havp clamav


~# freshclam

3. Add the following line into file “/etc/squid/squid.conf”.

cache_peer 127.0.0.1 parent 8080 0 no-query no-diggest no-netdb-exchange default

4. Make sure the configuration files in “/etc/havp/havp.config”, at least as the following


lines.

USER havp
GROUP havp
DAEMON true
PIDFILE /var/run/havp/havp.pid
SERVERNUMBER 20 # please adjust itself
MAXSERVERS 100 # please adjust ifself
ACCESSLOG /var/log/havp/access.log
ERRORLOG /var/log/havp/havp.log
USESYSLOG false
SYSLOGNAME havp
SYSLOGFACILITY daemon
SYSLOGLEVEL info

Eng. Omar Maslamani


Transparent Proxyd in Ubuntu
LOG_OKS true
LOGLEVEL 1
SCANTEMPFILE /var/spool/havp/havp-XXXXXX
TEMPDIR /var/tmp
DBRELOAD 60
TRANSPARENT false
FORWARDED_IP true
PORT 8080
BIND_ADDRESS 127.0.0.1
TEMPLATEPATH /etc/havp/templates/en
ENABLECLAMLIB true
CLAMDBDIR /var/lib/clamav
ENABLECLAMD false
ENABLEFPROT false
ENABLEAVG false
ENABLEAVESERVER false
ENABLESOPHIE false
ENABLETROPHIE false
ENABLENOD32 false
ENABLEAVAST false
ENABLEARCAVIR false
ENABLEDRWEB false

5. Make sure the rules in the IPTables NAT in this case as step 1, at least as the following
lines.

~# iptables -t nat -A PREROUTING -j REDIRECT -p tcp -i eth0 -s 192.168.0.0/24 –dport 80 –


to-ports 3128
~# iptables -t nat -A POSTROUTING -j MASQUERADE -p tcp -s 192.168.0.0/24 -o eth1

6. Restart Squid and HAVP service.

~# squid -k reconfigure
~# /etc/init.d/havp force-reload
- or -
~# /etc/init.d/squid restart
~# /etc/init.d/havp restart

7. Finish.

*) Don’t forget to open tcp ports 80 & 3128.

Eng. Omar Maslamani


Transparent Proxyd in Ubuntu
Configuring Squid & HAVP(ClamAV) in Ubuntu : Example 2

In this article, it is assumed that Squid has been installed and running well, because the
contents of this article will not discuss the installation of squid. The following is just an
example of the steps in configuring Squid as a parent proxy (not transparent proxy) and
HAVP (in collaboration with ClamAV) as a virus scanner (transparent proxy).

1. Information schema.

[ClamAV]
||
||
Transparent Proxy*
192.168.0.253:8080
|| [eth1]
|| ||
[Intranet]--------[HAVP]-+-[Squid]--------[Internet]
|| ||
[eth0] Parent Proxy
192.168.0.0/24 127.0.0.1:3128

2. Installing HAVP, ClamAV and ClamAV update virus databases for the first time.

~# apt-get install havp clamav


~# freshclam

3. Add the following line into file “/etc/squid/squid.conf”. If the existing configuration, like
this “http_port 192.168.0.253:3128 transparent”, please change the following lines like this.

http_port 127.0.0.1:3128

4. Make sure the configuration files in “/etc/havp/havp.config”, at least as the following


lines.

USER havp
GROUP havp
DAEMON true
PIDFILE /var/run/havp/havp.pid
SERVERNUMBER 20 # please adjust itself
MAXSERVERS 100 # please adjust ifself
ACCESSLOG /var/log/havp/access.log
ERRORLOG /var/log/havp/havp.log
USESYSLOG false
SYSLOGNAME havp
SYSLOGFACILITY daemon

Eng. Omar Maslamani


Transparent Proxyd in Ubuntu
SYSLOGLEVEL info
LOG_OKS true
LOGLEVEL 1
SCANTEMPFILE /var/spool/havp/havp-XXXXXX
TEMPDIR /var/tmp
DBRELOAD 60
TRANSPARENT true
FORWARDED_IP true
PARENTPROXY 127.0.0.1
PARENTPORT 3128
PORT 8080
BIND_ADDRESS 192.168.0.253
TEMPLATEPATH /etc/havp/templates/en
ENABLECLAMLIB true
CLAMDBDIR /var/lib/clamav
ENABLECLAMD false
ENABLEFPROT false
ENABLEAVG false
ENABLEAVESERVER false
ENABLESOPHIE false
ENABLETROPHIE false
ENABLENOD32 false
ENABLEAVAST false
ENABLEARCAVIR false
ENABLEDRWEB false

5. Make sure the rules in the IPTables NAT in this case as step 1, at least as the following
lines. If the IPTables NAT rule to redirect port prior to 3128, please change it to 8080.

~# iptables -t nat -A PREROUTING -j REDIRECT -p tcp -i eth0 -s 192.168.0.0/24 –dport 80 –


to-ports 8080
~# iptables -t nat -A POSTROUTING -j MASQUERADE -p tcp -s 192.168.0.0/24 -o eth1

6. Restart Squid and HAVP service.

~# squid -k reconfigure
~# /etc/init.d/havp force-reload
- or -
~# /etc/init.d/squid restart
~# /etc/init.d/havp restart

7. Finish.

*) Don’t forget to open tcp ports 80 & 8080.

Eng. Omar Maslamani

You might also like