stinfo/users>,
<mailto:users-request@lists.bitfolk.com?subject=subscribe>
X-List-Received-Date: Sun, 28 Dec 2008 04:11:59 -0000
--IPDFAagvJKOirP/Y
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Hi,
I was hoping to provide a centralised clamav service -- something
that has been repeatedly asked for -- but I've hit a bit of a road
block.
I can't be having clamav on just one host, and most clamav clients
don't support multiple IPs to round robin, so I'd like to load
balance it.
The problem is that clamav appears to expect the clients to send the
file data by a separate TCP stream, the port for which it tells the
client in response to a command the client gives. This is similar
to FTP.
It means I can't see a way to know which ports to open in the
firewall, and worse still, the daemon only responds with a port not
an IP, which is no good in a load balanced scenario since all the
clients are talking to the load balancer.
The only thing I can think of is configuring each clamav box to use
a different port range and mapping all those ports on the load
balancer to the correct boxes. That's really horrible. Anyone got
any better ideas?
Cheers,
Andy
--=20
http://bitfolk.com/ -- No-nonsense VPS hosting
Encrypted mail welcome - keyid 0x604DE5DB
--IPDFAagvJKOirP/Y
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFJVvyOIJm2TL8VSQsRAnmvAJ9u+qYH/lPO1Dna7w2Qx3t4WKRJCgCg0Fgu
RN5gFGu+gdRWh8n8hLCEWAE=
=Vbmb
-----END PGP SIGNATURE-----
--IPDFAagvJKOirP/Y--
From andy@??? Sun Dec 28 16:46:58 2008
Received: from andy by bitfolk.com with local (Exim 4.63)
(envelope-from <andy@???>) id 1LGyn3-0003ha-PC
for users@???; Sun, 28 Dec 2008 16:46:58 +0000
Date: Sun, 28 Dec 2008 16:46:57 +0000
From: Andy Smith <andy@???>
To: users@???
Message-ID: <20081228164657.GY29527@???>
References: <20081228041158.GU29527@???>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="8hDNj9fSINGAam3K"
Content-Disposition: inline
In-Reply-To: <20081228041158.GU29527@???>
OpenPGP: id=BF15490B; url=http://strugglers.net/~andy/pubkey.asc
X-URL: http://strugglers.net/wiki/User:Andy
User-Agent: Mutt/1.5.13 (2006-08-11)
X-Virus-Scanner: Scanned by ClamAV on bitfolk.com at Sun,
28 Dec 2008 16:46:57 +0000
X-SA-Exim-Connect-IP: <locally generated>
X-SA-Exim-Mail-From: andy@???
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on
admin.kwak.bitfolk.com
X-Spam-Level:
X-Spam-Status: No, score=0.0 required=5.0 tests=AWL,NO_RELAYS
autolearn=unavailable version=3.2.5
X-Spam-Report: * -0.0 NO_RELAYS Informational: message was not relayed via SMTP
* 0.0 AWL AWL: From: address is in the auto white-list
X-SA-Exim-Version: 4.2.1 (built Tue, 09 Jan 2007 17:23:22 +0000)
X-SA-Exim-Scanned:
