ClamAV multiple Network Profile
I am trying to configure an AV server i.e. ClamAV server internally hosted in my datacenter for all my laptop clients running Ubuntu 12.04 64Bit. Here is the configuration for the Server and the clients.
Server configuration
ClamAV Server configuration is to fetch the latest signature updates from the database mirror over internet db.xx.clamav.net in my case (xx is IN), it is India.
We also have 2 DB mirror entries in the freshclam.conf file for the server and looks like: DatabaseOwner clamav UpdateLogFile /var/log/clamav/freshclam.log LogVerbose false LogSyslog false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogTime true Foreground false Debug false MaxAttempts 5 DatabaseDirectory /var/lib/clamav DNSDatabaseInfo current.cvd.clamav.net AllowSupplementaryGroups false PidFile /var/run/clamav/freshclam.pid ConnectTimeout 30 ReceiveTimeout 30 TestDatabases yes ScriptedUpdates yes CompressLocalDatabase no Bytecode true
Check for new database 24 times a day
Checks 24 DatabaseMirror db.in.clamav.net DatabaseMirror database.clamav.net HTTPProxyServer company.proxy.com HTTPProxyPort 8080
Client configuration
Now all my clients will fetch the signatures from this internal ClamAV server since the freshclam.conf is modified as
DatabaseOwner clamav UpdateLogFile /var/log/clamav/freshclam.log LogVerbose false LogSyslog false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogTime true Foreground false Debug false MaxAttempts 5 DatabaseDirectory /var/lib/clamav DNSDatabaseInfo current.cvd.clamav.net AllowSupplementaryGroups false PidFile /var/run/clamav/freshclam.pid ConnectTimeout 30 ReceiveTimeout 30 TestDatabases yes ScriptedUpdates yes CompressLocalDatabase no Bytecode true
Check for new database 24 times a day
Checks 24 DatabaseMirror myavserver.com DatabaseMirror db.in.clamav.net DatabaseMirror database.clamav.net OnUpdateExecute /usr/bin/gedit
Problem Statement
AV signature update for my clients on office network and Home network(Internet).
Since there is no option to get a no_proxy variable set in the freshclam.conf hence would like to know how would my clients communicate to the internal clamav database mirror(i.e. my internal server) while in office.
And should be able to get updates when they are on internet directly from the external clamav database mirror.
I am trying to configure an AV server i.e. ClamAV server internally hosted in my datacenter for all my laptop clients running Ubuntu 12.04 64Bit. Here is the configuration for the Server and the clients.
Server configuration
ClamAV Server configuration is to fetch the latest signature updates from the database mirror over internet db.xx.clamav.net in my case (xx is IN), it is India.
We also have 2 DB mirror entries in the freshclam.conf file for the server and looks like: DatabaseOwner clamav UpdateLogFile /var/log/clamav/freshclam.log LogVerbose false LogSyslog false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogTime true Foreground false Debug false MaxAttempts 5 DatabaseDirectory /var/lib/clamav DNSDatabaseInfo current.cvd.clamav.net AllowSupplementaryGroups false PidFile /var/run/clamav/freshclam.pid ConnectTimeout 30 ReceiveTimeout 30 TestDatabases yes ScriptedUpdates yes CompressLocalDatabase no Bytecode true
Check for new database 24 times a day
Checks 24 DatabaseMirror db.in.clamav.net DatabaseMirror database.clamav.net HTTPProxyServer company.proxy.com HTTPProxyPort 8080
Client configuration
Now all my clients will fetch the signatures from this internal ClamAV server since the freshclam.conf is modified as
DatabaseOwner clamav UpdateLogFile /var/log/clamav/freshclam.log LogVerbose false LogSyslog false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogTime true Foreground false Debug false MaxAttempts 5 DatabaseDirectory /var/lib/clamav DNSDatabaseInfo current.cvd.clamav.net AllowSupplementaryGroups false PidFile /var/run/clamav/freshclam.pid ConnectTimeout 30 ReceiveTimeout 30 TestDatabases yes ScriptedUpdates yes CompressLocalDatabase no Bytecode true
Check for new database 24 times a day
Checks 24 DatabaseMirror myavserver.com DatabaseMirror db.in.clamav.net DatabaseMirror database.clamav.net OnUpdateExecute /usr/bin/gedit
Problem Statement
AV signature update for my clients on office network and Home network(Internet).
Since there is no option to get a no_proxy variable set in the freshclam.conf hence would like to know how would my clients communicate to the internal clamav database mirror(i.e. my internal server) while in office.
And should be able to get updates when they are on internet directly from the external clamav database mirror.
No comments:
Post a Comment