Bug #6763
closed
Squid ClamAv wrong redirect URL
0%
Description
After changing the pfsense hostname the squid proxy still redirects to the old hostname if it finds a virus. I also tried adding a redirect command in the custom squid config: no effect. I'm not the only one with this problem. Ref: https://forum.pfsense.org/index.php?topic=115323.0
Files
Updated by Kill Bill over 7 years ago
Richard Eberhard wrote:
I also tried adding a redirect command in the custom squid config: no effect.
Why? It's configurable in the GUI.
Updated by Kill Bill over 7 years ago
No bug here, let alone "very high" severity, can be closed. This is configurable in the GUI as shown above.
Updated by Jim Pingle over 7 years ago
- Status changed from New to Not a Bug
- Priority changed from Very High to Normal
Updated by Richard Eberhard over 7 years ago
Kill Bill wrote:
Richard Eberhard wrote:
I also tried adding a redirect command in the custom squid config: no effect.
Why? It's configurable in the GUI.
This option is not working also.
At first I changed the hostname of the pfsense installation. After that squid still redirected to the OLD hostname.(This is BUG NO. 1) Then I tried to set the "Redirect URL". Squid STILL redirects to the OLD hostname ( BUG NO.2 )
So there is not only one Bug. There are two....
Updated by Richard Eberhard over 7 years ago
Updated by Kill Bill over 7 years ago
The default URL is set to the pfSense GUI URL on package install. Simply because that's the only sensible default. There is no hook anywhere to make the package discover that you all of a sudden have decided to change your hostname. When you change the hostname, kindly do your job properly and do it everywhere as required.
Updated by Kill Bill over 7 years ago
And as for "the GUI does nothing":
$ grep "redirect http" /usr/local/etc/c-icap/squidclamav.conf redirect https://gw.testnet.local/squid_clwarn.php
$ grep "redirect http" /usr/local/etc/c-icap/squidclamav.conf redirect http://proxy.example.com/blocked.html
After making it empty yet again:
$ grep "redirect http" /usr/local/etc/c-icap/squidclamav.conf redirect https://gw.testnet.local/squid_clwarn.php
Updated by Frank Pineau over 7 years ago
I'm seeing the same redirect behavior. I can confirm that changing the GUI does update the squidclamav.conf file as indicated, but I'm still redirected to the original URL when testing with EICAR. You can see a sample browser window in the third image. I did not change my host name, I'm just trying to redirect to another server (using the word "flooby" as a placeholder for the other server URL)
Updated by Richard Eberhard over 7 years ago
Frank Pineau wrote:
I'm seeing the same redirect behavior.
Exact my problem.
So please reopen the issue. @Kill Bill
Updated by Roma Golbraich about 7 years ago
Solution:
when I installed pfSense with all packages I use, I gave it a domain name.
After some while, I changed the domain name to my DC, somehow SquidClamAV keeps the old data so I get pointed to unavailable address.
To fix this issue I edited 2 files: (Diagnostics - Edit File)
/usr/local/etc/c-icap/squidclamav.conf
/usr/local/etc/c-icap/squidclamav.conf.pfsense
- Why them both? because every time I edited the .conf file my settings get back to what it was. after changing them both pfSense kept the configuration and problem were fixed.