The thing is that there is no point using proxy on "headquarters linux server" because the "remote linux server" doesn't use tcp/ip to communicate with the "headquarter linux server". In fact the "remote linux server" uses typical dialup, and receives/sends data with uucp with no tcp/ip due to the overhead. So let me describe once more the scenario (hopefully more accurate):
(internet) -> headquarters linux server -> satellite communication (very expensive, slow, unstable and no tcp/ip at all) -> [[ remote linux server -> (lan) -> windows clients ]] The .cdiff files u mentioned might just do the trick. The questions however are: 1) which .cdiff files do I download? I can see, for example, that freshclamav downloaded yesterday daily-4473.cdiff, but I can't find it anywhere on the disk (obviously because it was patched on-the-fly to the clamav's db). Is there any way for freshclamav to simply download these cdiff files? (I could do it myself rather manually: parsing the freshclamav log file and download the designated cdiff files with wget later; but I'd prefer if freshclamav could do that for me). Then I could easily send them to the "remote linux server". 2) Assuming that these cdiff files are transfered to the "remote linux server", how do I feed the freshclamav of the "remote linux server" with these files? By default, more of less, freshclamav asks current.cvd.clamav.net which is the current version and if needed it gets the new files. (Right?) Since this can't happen on the "remote site", is there any way to skip this procedure and simply tell freshclamav that THESE are the cdiffs, take them and update the db? 3) The same question goes with the rest of the "windows client". How they will be updated? As u said, I could use OnUpdateExecute on the "remote linux server" in order to copy all clamav's db to the "windows clients". Although, the best solution would be to leave the update control initiative on "windows clients". This is because "windows clients" may not all be up and running when OnUpdateExecute is triggered. The second part is how clamav on "windows clients" will load the new db. If I use the fresh freshclamav on "windows clients" then I could use the NotifyClamd option. Right? Thanx --- René Berber <[EMAIL PROTECTED]> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > ilias seperis wrote: > > > I've read the FAQ. > > Obviously I didn't explain my case so well. > > I have the following setup: > > headquarters linux server -> satellite > communication > > (very expensive) -> remote linux server -> windows > > clients > > > > So, I need something like that: > > 1) The "headquarters linux server" will download > the > > incremental files with freshclamav > > 2) These incremental files will be transferred via > > satellite to the "remote linux server". This is > very > > expensive, that's why I need as small files as > > possible. > > 3) The windows clients on this remote site will > > download the incremental files from their local > linux > > server > > > > So the question is, can I somehow keep the > incremental > > files that freshclamav downloads at the > "headquarters > > linux server", in order to transfer them to the > > "remote linux server"? > > Where are these diff files (main.cvd and > daily.cvd) > > being kept before they are patched on the real > > clamav's database? > > You mean the .cdiff files? or are you using > non-scripted updates? > > The answer to your question is the same, except that > using cdiffs is less costly > (they are smaller), like the FAQ says, but let me > put it in another way: set up > a proxy server (Squid for instance) on the > "headquarters linux" and configure > freshclam on both linuxes to use it. Configure the > proxy to cache long enough > so you can do less updates (once per day for > instance) on the remote server. > > On the "remote linux" you could use rsync to push > (or pull) the changes to your > clients (with the 'OnUpdateExecute command' option), > and forget about freshclam > on those clients. If you are using .cvd files, you > can also use the second part > of the FAQ answer: use "remote linux" as database > server, by changing the client > freshclams to use 'ScriptedUpdates off'. There may > be a way to convert the > *.inc directories to .cvd files. > > > What is the difference between main.cvd and > daily.cvd? > > They are the the stable and dynamic parts of the > database. Main.inc/main.cvd > has the signatures that have been used a long time, > daily.inc/daily.cvd has the > recently added signatures; both change, daily much > more often, but main does change. > - -- > René Berber > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.7 (Cygwin) > > iD8DBQFHBn7ML3NNweKTRgwRCNYBAJ9wY73L2cmlrGyYUuw+jyNcXYC/2gCgi00L > 6NA9M+WFQw4Ox0AZvjSbrck= > =UMKv > -----END PGP SIGNATURE----- > > _______________________________________________ > Help us build a comprehensive ClamAV guide: visit > http://wiki.clamav.net > http://lurker.clamav.net/list/clamav-users.html > ____________________________________________________________________________________ Catch up on fall's hot new shows on Yahoo! TV. Watch previews, get listings, and more! http://tv.yahoo.com/collections/3658 _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
