HTTP Anti-Virus Proxy

Official HAVP Support Forum
Registration disabled, I'm tired of spambots. E-mail havp@hege.li if you have questions.
HAVP project is pretty much frozen/abandoned at this time anyway.
It is currently 22 Jun 2014 09:53

All times are UTC + 2 hours [ DST ]




Post new topic Reply to topic  [ 3 posts ] 
Author Message
PostPosted: 07 Jun 2006 16:43 
Offline

Joined: 07 Jun 2006 16:22
Posts: 2
Hello,

First please excuse my poor english.

I've installed havp 0.78 on my ipcop box using copfilter, configured and activated it. I got always the same error message
Quote:
07/06/2006 14:30:08 (127.0.0.1) Could not read server header (www.fnac.com:80)
07/06/2006 14:32:09 (127.0.0.1) Could not read server header (www.fnac.com:80)
07/06/2006 14:32:23 (127.0.0.1) Could not read server body (www.fnac.com:80)
07/06/2006 14:32:23 (127.0.0.1) Could not read server body (www.fnac.com:80)
(fnac.com is one among others)
on any page I try to access excluding google's one (why is a good question).

the scheme is user->squid->havp->net.
I've tried it with/without transparent proxy, but it always produce the same error.

here is my havp.config :

Code:
USER havp
GROUP havp
DAEMON true
PIDFILE /var/log/copfilter/default/opt/havp/var/run/havp_daemon.pid
SERVERNUMBER 50
ACCESSLOG /var/log/copfilter/default/opt/havp/var/log/access.log
ERRORLOG /var/log/copfilter/default/opt/havp/var/log/error.log
LOGLEVEL 1
SCANTEMPFILE /var/log/copfilter/default/opt/havp/tmp/havp-XXXXXX
PORT 10080
TEMPLATEPATH /var/log/copfilter/default/opt/havp/etc/templates/en
WHITELIST  /var/log/copfilter/default/opt/havp/etc/whitelist
BLACKLIST /var/log/copfilter/default/opt/havp/etc/blacklist
FAILSCANERROR false
MAXSCANSIZE 20000000
KEEPBACKBUFFER 1000000
TRICKLING 10


and now my squid.conf
Code:
shutdown_lifetime 5 seconds
icp_port 0
http_port 192.168.0.1:3128
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_effective_user squid
cache_effective_group squid
pid_filename /var/run/squid.pid
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log none
log_mime_hdrs off
forwarded_for off
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 800 # Squids port (for icons)
acl IPCop_http  port 81
acl IPCop_https port 445
acl IPCop_ips  dst 192.168.0.1
acl IPCop_networks src 192.168.0.0/255.255.255.0
acl CONNECT method CONNECT
http_access allow         localhost
http_access allow         IPCop_ips IPCop_networks IPCop_http
http_access allow CONNECT IPCop_ips IPCop_networks IPCop_https
http_access deny          !Safe_ports
http_access deny  CONNECT !SSL_ports
http_access allow         IPCop_networks
http_access deny          all
maximum_object_size 4096 KB
minimum_object_size 0 KB
cache_mem 2000 KB
cache_dir aufs /var/log/cache 50 16 256
request_body_max_size 0 KB
reply_body_max_size 0 allow all
visible_hostname ipcop.lan
ftp_sanitycheck off
acl copfilter_all src 0.0.0.0/0.0.0.0
acl Scan_HTTP proto HTTP
acl Scan_FTP proto FTP
cache_peer 127.0.0.1 parent 10080 0 no-query no-digest no-netdb-exchange default
cache_peer_access 127.0.0.1 allow copfilter_all
always_direct allow Scan_FTP
never_direct allow Scan_HTTP


I've googled around the error code but there's nothing that help me.
I'ev also look the havp-users mailing-list, found this message but it given't something to look for.

If anyone have any idea ?


Top
 Profile  
 
 Post subject:
PostPosted: 07 Jun 2006 17:00 
Offline
HAVP Developer

Joined: 27 Feb 2006 18:12
Posts: 687
Location: Finland
I guess this would be more appropriate for copfilter forum. I can't see any HAVP reason for every page to produce the errors. Is surfing working at all? Perhaps your copfilter networking has something misconfigured.

Cheers,
Henrik


Top
 Profile  
 
 Post subject:
PostPosted: 07 Jun 2006 19:01 
Offline

Joined: 07 Jun 2006 16:22
Posts: 2
Ok I've found the problem googling something else. The problem wasn't havp but my ISP (free, in France) which mess squid up.
The solution : set the internet interface mtu to 1460. (I don't understand why, but it works).

For more information : where I've found the answer (in french, but the problem seems to not affect others ISP).

Cheers,
John.


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 3 posts ] 

All times are UTC + 2 hours [ DST ]


Who is online

Users browsing this forum: Yahoo [Bot] and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group