[squid-users] showing clients ip on whos tried to download virus on squid 4
robert k Wild
robertkwild at gmail.com
Sat Jan 4 01:13:49 UTC 2020
hi all,
this is my config at the end of squid.conf
#ICAP
icap_enable on
icap_send_client_ip on
icap_send_client_username on
icap_client_username_header X-Authenticated-User
icap_service service_req reqmod_precache bypass=0 icap://
127.0.0.1:1344/squidclamav
adaptation_access service_req allow all
icap_service service_resp respmod_precache bypass=0 icap://
127.0.0.1:1344/squidclamav
adaptation_access service_resp allow all
it works great but when i go on the c-icap logs its just specifies this
Sat Jan 4 00:50:36 2020, 1610/782518016, squidclamav.c(908)
squidclamav_end_of_data_handler: Sat Jan 4 00:50:36 2020, 1610/782518016,
LOG Virus found, sending redirection header / error page.
Sat Jan 4 00:50:39 2020, 1610/782518016, squidclamav.c(866)
squidclamav_end_of_data_handler: Sat Jan 4 00:50:39 2020, 1610/782518016,
LOG Virus found in https://secure.eicar.org/eicar_com.zip ending download
[stream: Eicar-
Test-Signature FOUND]
how come the clients ip is not showing up?
thanks,
rob
--
Regards,
Robert K Wild.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20200104/f1b8f558/attachment.html>
More information about the squid-users
mailing list