HTTP Anti-Virus Proxy

Hi,

I have a problem launching squid with havp.
When I do a squid -z I receive the error
parse_peer: token='name=havp'
FATAL: Bungled squid.conf line 15: cache_peer 127.0.0.1 parent 8090 0 name=havp proxy-only no-query no-digest no-netdb-exchange default

I also recieved errors on an unrecognised "log_access deny FROM_HAVP"

My collegue has installed this a while ago on another server which is working weel (squid) but if I do a service squid status I also recieve this error.
But there at least the squid runs.

If I delete all lines about havp in my conf it works fine.

Can somebody see the problem?

Clamav 0.93 havp 0.88 squid 2.5 on a centOS4.6

My squid.conf looks like this:

http_port 8080
http_port 127.0.0.1:8081
acl FROM_HAVP myport 8081
log_access deny FROM_HAVP
cache_peer 127.0.0.1 parent 8090 0 name=havp proxy-only no-query no-digest no-netdb-exchange default
cache_peer 127.0.0.1 parent 8081 0 name=squid2 proxy-only no-query no-digest no-netdb-exchange
prefer_direct off
nonhierarchical_direct off
acl HTTPS method CONNECT
never_direct allow !FROM_HAVP
cache_peer_access havp deny FROM_HAVP
cache_peer_access havp deny HTTPS
cache_peer_access havp allow all
cache_peer_access squid2 allow all
cache_peer_access squid2 deny FROM_HAVP
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl white src "/etc/squid/whitelist.txt" # my whitelist ip address
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow white
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all

havp.conf

[color=#004080]PARENTPROXY 127.0.0.1
PARENTPORT 8081
PORT 8090

ENABLEFPROT false
ENABLEAVG false
ENABLEAVESERVER false
ENABLECLAMLIB true
ENABLECLAMD false
ENABLENOD32 false
ENABLEAVAST false
ENABLEARCAVIR false
ENABLEDRWEB false[/color]

As the example says, these are Squid 2.6 options.

You can drop log_access and name=havp. Just replace cache_peer_access havp with cache_peer_access 127.0.0.1. And name=squid2 as 127.0.0.2.

Ok thanks, I will try it out today. I'll let you know if it works.

it works, I've adapted serveral lines in the conf file to also enable https and allow the traffic to pass.

Thanks alot because I've searched for hours and hours on this.