HTTP Anti-Virus Proxy http://havp.hege.li/forum/ |
|
A lot of "Could not read server header" http://havp.hege.li/forum/viewtopic.php?f=3&t=117 |
Page 1 of 1 |
Author: | JoKoT3 [ 07 Jun 2006 16:43 ] |
Post subject: | A lot of "Could not read server header" |
Hello, First please excuse my poor english. I've installed havp 0.78 on my ipcop box using copfilter, configured and activated it. I got always the same error message Quote: 07/06/2006 14:30:08 (127.0.0.1) Could not read server header (www.fnac.com:80) (fnac.com is one among others)
07/06/2006 14:32:09 (127.0.0.1) Could not read server header (www.fnac.com:80) 07/06/2006 14:32:23 (127.0.0.1) Could not read server body (www.fnac.com:80) 07/06/2006 14:32:23 (127.0.0.1) Could not read server body (www.fnac.com:80) on any page I try to access excluding google's one (why is a good question). the scheme is user->squid->havp->net. I've tried it with/without transparent proxy, but it always produce the same error. here is my havp.config : Code: USER havp GROUP havp DAEMON true PIDFILE /var/log/copfilter/default/opt/havp/var/run/havp_daemon.pid SERVERNUMBER 50 ACCESSLOG /var/log/copfilter/default/opt/havp/var/log/access.log ERRORLOG /var/log/copfilter/default/opt/havp/var/log/error.log LOGLEVEL 1 SCANTEMPFILE /var/log/copfilter/default/opt/havp/tmp/havp-XXXXXX PORT 10080 TEMPLATEPATH /var/log/copfilter/default/opt/havp/etc/templates/en WHITELIST /var/log/copfilter/default/opt/havp/etc/whitelist BLACKLIST /var/log/copfilter/default/opt/havp/etc/blacklist FAILSCANERROR false MAXSCANSIZE 20000000 KEEPBACKBUFFER 1000000 TRICKLING 10 and now my squid.conf Code: shutdown_lifetime 5 seconds
icp_port 0 http_port 192.168.0.1:3128 acl QUERY urlpath_regex cgi-bin \? no_cache deny QUERY cache_effective_user squid cache_effective_group squid pid_filename /var/run/squid.pid cache_access_log /var/log/squid/access.log cache_log /var/log/squid/cache.log cache_store_log none log_mime_hdrs off forwarded_for off acl all src 0.0.0.0/0.0.0.0 acl localhost src 127.0.0.1/255.255.255.255 acl SSL_ports port 443 563 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl Safe_ports port 800 # Squids port (for icons) acl IPCop_http port 81 acl IPCop_https port 445 acl IPCop_ips dst 192.168.0.1 acl IPCop_networks src 192.168.0.0/255.255.255.0 acl CONNECT method CONNECT http_access allow localhost http_access allow IPCop_ips IPCop_networks IPCop_http http_access allow CONNECT IPCop_ips IPCop_networks IPCop_https http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access allow IPCop_networks http_access deny all maximum_object_size 4096 KB minimum_object_size 0 KB cache_mem 2000 KB cache_dir aufs /var/log/cache 50 16 256 request_body_max_size 0 KB reply_body_max_size 0 allow all visible_hostname ipcop.lan ftp_sanitycheck off acl copfilter_all src 0.0.0.0/0.0.0.0 acl Scan_HTTP proto HTTP acl Scan_FTP proto FTP cache_peer 127.0.0.1 parent 10080 0 no-query no-digest no-netdb-exchange default cache_peer_access 127.0.0.1 allow copfilter_all always_direct allow Scan_FTP never_direct allow Scan_HTTP I've googled around the error code but there's nothing that help me. I'ev also look the havp-users mailing-list, found this message but it given't something to look for. If anyone have any idea ? |
Author: | hege [ 07 Jun 2006 17:00 ] |
Post subject: | |
I guess this would be more appropriate for copfilter forum. I can't see any HAVP reason for every page to produce the errors. Is surfing working at all? Perhaps your copfilter networking has something misconfigured. Cheers, Henrik |
Author: | JoKoT3 [ 07 Jun 2006 19:01 ] |
Post subject: | |
Ok I've found the problem googling something else. The problem wasn't havp but my ISP (free, in France) which mess squid up. The solution : set the internet interface mtu to 1460. (I don't understand why, but it works). For more information : where I've found the answer (in french, but the problem seems to not affect others ISP). Cheers, John. |
Page 1 of 1 | All times are UTC + 2 hours [ DST ] |
Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |