Re: [SQU] Squid + Trend Micro Viruswall from Henrik Nordstrom on 2001-01-09 (squid-users)

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Tue, 09 Jan 2001 17:00:15 +0100

Only what is allowed by cache_peer is ever going to be sent there.

So yes.

the never_direct is needed to make sure i never bypasses the virus
checker for those.

/Henrik

Temkin, David wrote:
>
> And this will *only* pass the binaries (as you defined) to the Viruswall,
> and everything else will go directly out?
>
> -Dave
>
> David Temkin
> Susquehanna Partners, G.P.
> 401 City Line Avenue
> Bala Cynwyd, PA 19406
> (610) 617-2889 - Voice
> (267) 626-7182 - Cell/Pager
> (610) 617-3889 - Fax
>
> -----Original Message-----
> From: Henrik Nordstrom [mailto:hno@hem.passagen.se]
> Sent: Tuesday, January 09, 2001 10:04 AM
> To: Temkin, David
> Cc: 'squid-users@ircache.net'
> Subject: Re: [SQU] Squid + Trend Micro Viruswall
>
> Something like this:
>
> cache_peer your.trend-micro.viruswall parent 8080 0 no-query
> acl binaries urlpath_regex -i \.exe$ \.zip$ \.vbs$ \.gz$
> cache_peer_access your.trend-micro.viruswall allow binaries
> never_direct allow binaries
>
> then if you have any other cache_peers, make sure to use
> cache_peer_access to deny binaries from being fetched from any of them..
>
> /Henrik
>
> Temkin, David wrote:
> >
> > Is there any way you could throw an example my way? I'm still a bit lost.
> >
> > Thanks,
> >
> > -Dave
> >
> > David Temkin
> > Susquehanna Partners, G.P.
> >
> > -----Original Message-----
> > From: Henrik Nordstrom [mailto:hno@hem.passagen.se]
> > Sent: Tuesday, January 09, 2001 7:50 AM
> > To: Dave Temkin
> > Cc: squid-users@ircache.net
> > Subject: Re: [SQU] Squid + Trend Micro Viruswall
> >
> > Dave Temkin wrote:
> > >
> > > Was wondering if anyone had any sample configs/ideas...
> > >
> > > What I'd like to do is place the Squid server at the "Front", so the
> > > clients talk to it, and then have Squid pass off any requests for any
> > > pages ending in .zip, .exe. .vbs, .gz, etc. off to VirusWall, but
> process
> > > everything else itself without passing off to the (sometimes) slow
> > > VirusWall...
> > >
> > > Anyone have any ideas? Are there any utilities for this? Is the
> > > functionality built in and I'm just braindead?
> >
> > You need to combine
> > cache_peer
> > cache_peer_access
> > never_direct (if you want to force the virus check)
> >
> > --
> > Henrik Nordstrom
> > Squid Hacker
> >
> > --
> > To unsubscribe, see http://www.squid-cache.org/mailing-lists.html

--
To unsubscribe, see http://www.squid-cache.org/mailing-lists.html

Received on Tue Jan 09 2001 - 09:42:41 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:57:23 MST