Newsflash

Koleksi PDF NeoTek sekarang dah komplit dari Volume I s/d IV, untuk Volume V dan VI masih dalam proses. Silakan cek and ricek di http://odyxb.wordpress.com atau http://ma-rody-candera.blogspot.com

Ayo mang..., sedot!!!
 
Setup Squid Proxy PDF Print E-mail
Written by .K   
Wednesday, 01 April 2009 14:33

berikut adalah artikel asli dari bung Syaoranz dari artikel lama db Neoteker...

===============================================

 

1. Donlod dulu squid nya http://www.squid-cache.org/Versions/v2/2.5/squid-2.5.STABLE11.tar.gz
2. klo dah.. coba di tar -zxvf squid-2.5.STABLE11.tar.gz
3. beres tar, masuk ke folder nya .. daaaann.. configure
Rumus untuk configure squid yg baik dan benar adalah :
./configure --prefix=/usr/local/squid --exec-prefix=/usr/local/squid --enable-delay-pools --enable-cache-diggests --enable-poll --disable-ident-lookups --enable-async-io=16 --enable-auth-modules --enable-removal-policies --enable-snmp


Nah itu rumus nya.. panjang sih, tp copy paste aja biar cepet :P
4. setelah itu bwt user squid nya dulu.. n ini harus butuh root login bwt adduser nya
Rumus nya :
1+1= 2 loh..?

useradd -d /usr/local/squid/ -r -s /dev/null squid > /dev/null 2>&1

copy paste aja ke box nya.. okie? sip..!

4. lalu pencet/ktik make all then make install
5. nah skr ke dir /usr/local/squid/etc liat squid.conf
6. edit deh squid.conf nya seperti begini

ini cuman contoh conf aja .. jangan di copy semua nya ntar error

##contoh
http_port 202.155.166.24:8888 <= dimana 8888 adalah portnya##
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
#Recommended minimum configuration:
#auth_param digest program
#auth_param digest children 5
#auth_param digest realm Squid proxy-caching web server
#auth_param digest nonce_garbage_interval 5 minutes
#auth_param digest nonce_max_duration 30 minutes
#auth_param digest nonce_max_count 50
#auth_param ntlm program
#auth_param ntlm children 5
#auth_param ntlm max_challenge_reuses 0
#auth_param ntlm max_challenge_lifetime 2 minutes
#auth_param ntlm use_ntlm_negotiate off
#auth_param basic program
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
#Examples:
#acl macaddress arp 09:00:2b:23:45:67
#acl myexample dst_as 1241
#acl password proxy_auth REQUIRED
#acl fileupload req_mime_type -i ^multipart/form-data$
#acl javascript rep_mime_type -i ^application/x-javascript$
#
#Recommended minimum configuration:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
###### masukan ip yang bole akses ######
acl warnet src 222.124.76.111/32
##################################
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

http_access allow warnet
http_access allow manager localhost
http_access deny manager

# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
http_access deny all
http_reply_access allow all
icp_access allow all

header_access From deny all
header_access Referer deny all
header_access Server deny all
header_access User-Agent deny all
header_access WWW-Authenticate deny all <- di deny kalau si squid nya ga mau ada popup² yg mengganggu
header_access Link deny all
header_replace User-Agent Cisco Cache Engine, Version 1.7.0
header_access Accept-Encoding deny all
header_access X-Forwarded-For deny all
header_access Via deny all

N.B: acl warnet src 222.124.76.111/32 <<-- ganti IP inet kalian.. kalau pake IP itu di jamin ga bisa pake tu proxy :P

udah beres edit²nya? kalau udah save edit'an nya .. lalu...

7. lalu ktik
chown -R squid.squid /usr/local/squid
chmod 777 /usr/local/squid/var/logs/
chmod 777 /usr/local/squid/var/
8. Klo dah beres ktik, /usr/local/squid/sbin/squid -z
9. klo sukses creating swap nya.. lalu ktik /usr/local/squid/sbin/squid
10. cek ps -uax apakah ada proses squid nya? dan cek netstat -plnat apakah port nya sudah listen?

Kalau ada error pas running squid nya coba cari error nya kenapa ktik tail -f /var/logs/messeges

Kalau sudah ya... Enjoy your private proxeh !! :D

By syaoranz on Dal.Net
Last Updated on Tuesday, 20 July 2010 06:39
 

Comments  

 
#2 adzymaniac 2009-04-02 15:08 ada cara lain bung..
siap…

# apt-get install squid

secara default config intinya mirip sama yg diatas Quote
 
 
#1 yocki 2009-04-02 14:51 hehehhe…

gwe inget banget dolo ampe minta tutor ini buat ditampilin di blog yg lama, dan inget banget pertama kali bikin proxy bener-bener ngikutin dari tutorial ini..

mantap man…!!!! Quote
 

Add comment

Komentar yg anda keluarkan merupakan tanggungjawab pribadi, Neoteker.or.id tidak bertanggung jawab atas isi komentar yang ada.


Main Menu

Section

Komentar - komentar

 
Template by Tobacamp Development Studio