havp Antivirus: HTTP proxy (havp + clamav) Status 1.02 /usr/local/pkg/havp.inc Antivirus Antivirus service
Services
/antivirus.php
havp havp.sh havp Antivirus HTTP proxy Service https://packages.pfsense.org/packages/config/havp/havp.inc /usr/local/pkg/ 0755 https://packages.pfsense.org/packages/config/havp/havp_avset.xml /usr/local/pkg/ 0755 https://packages.pfsense.org/packages/config/havp/antivirus.php /usr/local/www/ 0755 General page /antivirus.php HTTP proxy /pkg_edit.php?xml=havp.xml&id=0 Settings /pkg_edit.php?xml=havp_avset.xml&id=0 Log /havp_log.php Enable enable Check this for enable proxy. checkbox ClamAV mode use_clamd Select ClamAV running mode:<br> <b>Daemon</b> - HAVP will use ClamAV as socket scanner daemon. Default option.<br> <b>Library</b> - HAVP will use ClamAV as loaded library scanner. Note: this mode needs much more memory.<br> select true Proxy mode proxymode Select interface mode: <br> <b> standard </b> - client(s) bind to the 'proxy port' on selected interface(s); <br> <b> parent for squid </b> - configure HAVP as parent for Squid proxy;<br> <b> transparent </b> - all HTTP requests on interface(s) will be directed to the HAVP proxy server without any client configuration necessary (works as parent for squid with transparent Squid proxy); <br> <b> internal </b> - HAVP will listen on the loopback (127.0.0.1) on configured 'proxy port.' Use you own traffic forwarding rules.<br> select standard Proxy interface(s) proxyinterface The interface(s) for client connections to the proxy. Use 'Ctrl' + L. Click for multiple selection. interfaces_selection lan Proxy port proxyport This is the port the proxy server will listen on (for example: 8080). This port must be different from Squid proxy. input 10 3125 Parent proxy parentproxy Enter the parent (upstream) proxy settings as PROXY:PORT format or leave empty. input 90 Enable X-Forwarded-For enablexforwardedfor If client sent this header, FORWARDED_IP setting defines the value, then it is passed on. You might want to keep this disabled for security reasons. <br>Enable this if you use your own parent proxy after HAVP, so it will see the original client IP. <br>Disabling this also disables Via: header generation. checkbox Enable Forwarded IP enableforwardedip If HAVP is used as a parent proxy for some other proxy, this allows writing the real user's IP to log, instead of the proxy IP. checkbox Language lang Select the language in which the proxy server will display error messages to users. select en Max download size, Bytes maxdownloadsize Enter value (in Bytes) or leave empty. Downloads larger than 'Max download size' will be blocked if not whitelisted. input 10 HTTP Range requests range Set this for allow HTTP Range requests, and broken downloads can be resumed. Allowing HTTP Range is a security risk, because partial HTTP requests may not be properly scanned. Whitelisted sites are allowed to use Range in any case. checkbox Whitelist whitelist Enter each destination URL on a new line that will be accessable to the users without scanning. Use '*' symbol for mask. Example: *.github.com/*, *sourceforge.net/*clamav-*, */*.xml, */*.inc textarea 60 5 base64 Blacklist blacklist Enter each destination domain on a new line that will be accessable to the users that are allowed to use the proxy. textarea 60 5 base64 Block file if error scanning failscanerror If set, the proxy will block the files on which an error scanning. checkbox Enable RAM Disk enableramdisk This option allow use RAM disk for HAVP temp files for more quick traffic scan. RAM disk size depends on 'ScanMax' file size and available memory. This option can be ignored on systems with low memory. ( RAM disk size calculated as [1/4 available system memory] > [Scan max file size] * 100 ) checkbox Scan max file size scanmaxsize Select this value for limit maximum file size or leave '---(5M)'. Files larger than this limit won't be scanned. Small values increace scan speed and maximum new connections per second and allow RAM disk use. <br> NOTE: Setting limit is a security risk, because some archives like ZIP need all the data to be scanned properly! Use this only if you can't afford temporary space for big files. select 0 Scan images scanimg Check this for scan image files. This option allows you to increase reliability, but also slows down the scanning process. checkbox Scan media stream scanstream Check this for scan media (audio/video) stream. Use this for additional scan exploits for players. checkbox Scan Broken Executables scanbrokenexe Check this to enable the Heuristic Broken Executable scan. checkbox on Log log Check this for enable log. checkbox syslog Syslog syslog Check this for enable Syslog. checkbox havp_before_form($pkg); havp_validate_settings($_POST, $input_errors); havp_resync(); havp_install(); havp_deinstall();