Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

HTTP daemon of InterScan Web Security Virtual Appliance (IWSVA) does not start when proxy port is 3128

    • Updated:
    • 30 Jul 2014
    • Product/Version:
    • InterScan Web Security Virtual Appliance 5.6
    • InterScan Web Security Virtual Appliance 6.0
    • InterScan Web Security Virtual Appliance 6.5
    • Platform:
    • N/A N/A
Summary
The HTTP daemon is unable to start when the HTTP proxy port is set to 3128. The content cache feature is enabled on IWSVA, and this feature is provided by the embedded third-party software Squid, which also listens to port 3128.
Details
Public
The issue occurs because of a port conflict between the IWSVA HTTP process and the embedded Squid process. To resolve the issue, it is recommended to change the IWSVA HTTP proxy port to another port such as 8080. If this is not possible, do the following workaround:
  1. Using SSH, log in to the IWSVA console with the root account.
  2. Create a backup copy of /etc/squid/squid.conf.
  3. Open squid.conf using vi command.
  4. Change port 3128 to 3129. It should appear like this:
    http_port 3129 transparent
  5. Back up and then open /usr/iwss/AdminUI/cache_helper.sh.
  6. Locate the following parameter:
    SQUID_CLIENT="/usr/bin/squidclient"
  7. Change the value to the following:
    SQUID_CLIENT="/usr/bin/squidclient -p 3129"
  8. If you want to ensure that the port will not revert to 3128 in case the content cache feature is disabled and re-enabled, change the HTTP port number from 3128 to 3129 in the following lines:
    if [ $RETVAL -eq 0 ]; then
       ${RWCONFIG} -ct -f ${SQUID_CONF} -s "http_port" -n "3128 transparent"
    else
       ${RWCONFIG} -at -f ${SQUID_CONF} -n "http_port 3128 transparent"
    fi
    The values should appear like this:
    if [ $RETVAL -eq 0 ]; then
       ${RWCONFIG} -ct -f ${SQUID_CONF} -s "http_port" -n "3129 transparent"
    else
       ${RWCONFIG} -at -f ${SQUID_CONF} -n "http_port 3129 transparent"
    fi
  9. Save the changes and then reboot IWSVA.
Note: Implement the workaround again if a future hot fix, patch or service pack replaces /usr/iwss/AdminUI/cache_helper.sh with a new version.
Premium
Internal
Rating:
Category:
Troubleshoot
Solution Id:
1102255
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.