OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • Web Proxy Filtering and Caching (Moderator: fabian) »
  • How to troubleshoot Clamav?
« previous next »
  • Print
Pages: [1]

Author Topic: How to troubleshoot Clamav?  (Read 3549 times)

Mitheor

  • Newbie
  • *
  • Posts: 36
  • Karma: 1
    • View Profile
    • Website
How to troubleshoot Clamav?
« on: April 16, 2020, 10:00:11 am »
Hi,

i´ve just added ClamAV in my Opnsense (20.1.4) but it´s not working (i´m downloading infected files to my computer without the AV doing nothing).

Is there any way to troubleshoot this process?

Clamd, freshclam, cicap and proxy are up and running.

Everything is basically with default config.

Any idea?

Thanks in advance   :)


Edit. Nevermind, solved.
« Last Edit: April 16, 2020, 10:16:05 am by Mitheor »
Logged

bartjsmit

  • Hero Member
  • *****
  • Posts: 2023
  • Karma: 194
    • View Profile
Re: How to troubleshoot Clamav?
« Reply #1 on: April 16, 2020, 11:36:21 am »
There is a harmless "virus" exactly for this purpose.

https://en.wikipedia.org/wiki/EICAR_test_file

Bart...
Logged

guest23448

  • Guest
Re: How to troubleshoot Clamav?
« Reply #2 on: April 16, 2020, 05:47:19 pm »
  • ensure that clamAV downloaded the signatures etc. --> Log from clamAV
  • ensure that desired traffic (HTTP / HTTPS) is routed to the proxy (transparent way= using NAT rule / explicit way = config the proxy in browsers/OS) --> access log from the proxy
  • ensure that file is handled by clamAV --> Log from C-ICAP
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • Web Proxy Filtering and Caching (Moderator: fabian) »
  • How to troubleshoot Clamav?
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2