Gotcha. Yeah, the error is because those are CloudFlare IPs and direct IP access doesn't work (I just tried it myself). It could be a problem with that one particular IP then.
I tried by name and was successful in downloads from 188 and 186. I haven't been directed to 189 IP address. On the machine that failed, can you set an entry in the hosts file to force database.clamav.net to the 188 IP address temporarily? --Maarten On Tue, Aug 28, 2018 at 6:34 AM Jon Roberts <j...@racksrv.net> wrote: > I've modified the conf file to use the same IP that the other server used, > no dice still: > > > Retrieving http://104.16.188.138/main.cvd > Trying to download http://104.16.188.138/main.cvd (IP: 104.16.188.138) > WARNING: getfile: Unknown response from 104.16.188.138 (IP: 104.16.188.138) > WARNING: Can't download main.cvd from 104.16.188.138 > > (different error/response as I'm, having to use the normal update method > to ensure it uses the correct IP) > > > > ------------------------------ > *From:* clamav-users <clamav-users-boun...@lists.clamav.net> on behalf of > Maarten Broekman <maarten.broek...@gmail.com> > *Sent:* 28 August 2018 11:24 > *To:* ClamAV users ML > *Subject:* Re: [clamav-users] ERROR 403: Forbidden > > > On Aug 28, 2018, at 06:17, Jon Roberts <j...@racksrv.net> wrote: > > From the troubled server: > > wget http://database.clamav.net/main-55.cdiff > --2018-08-28 11:14:43-- http://database.clamav.net/main-55.cdiff > Resolving database.clamav.net... 104.16.189.138, 104.16.187.138, > 104.16.188.138, ... > Connecting to database.clamav.net|104.16.189.138|:80... connected. > HTTP request sent, awaiting response... 403 Forbidden > 2018-08-28 11:14:43 ERROR 403: Forbidden. > > From another server on the same network: > > wget http://database.clamav.net/main-55.cdiff > --2018-08-28 11:16:15-- http://database.clamav.net/main-55.cdiff > Resolving database.clamav.net... 104.16.188.138, 104.16.185.138, > 104.16.186.138, ... > Connecting to database.clamav.net|104.16.188.138|:80... connected. > HTTP request sent, awaiting response... 200 OK > Length: 34736938 (33M) [application/octet-stream] > Saving to: `main-55.cdiff' > > > > It seems like those machines are contacting two different IP addresses. > The failure situation happened on 104.16.189.138 which the success > situation had 188 in the third octet (104.16.188.138). Are you sure that > the second machine was able to contact the 189 address successfully? Or > that the first machine was also getting an error on the 188 address? > > Any ideas? It looks like we're getting blocked but I'm not sure who to > contact to have the issue rectified? > > Regards, Jon > > _______________________________________________ > clamav-users mailing list > clamav-users@lists.clamav.net > http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users > > > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > > http://www.clamav.net/contact.html#ml > > _______________________________________________ > clamav-users mailing list > clamav-users@lists.clamav.net > http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users > > > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > > http://www.clamav.net/contact.html#ml >
_______________________________________________ clamav-users mailing list clamav-users@lists.clamav.net http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
