Install Squid Proxy Server
$sudo apt-get update
$sudo apt-get install squid
Backup File squid.conf terlebih dahulu
$sudo cp /etc/squid/squid.conf /etc/squid/squid.conf.original
Edit File squid.conf
$sudo nano /etc/squid/squid.conf
# WELCOME TO SQUID 2.7.STABLE3
# ----------------------------
#
# This is the default Squid configuration file. You may wish
# to look at the Squid home page (http://www.squid-cache.org/)
# for the FAQ and other documentation.
#
# The default Squid config file shows what the defaults for
# various options happen to be. If you don't need to change the
# default, you shouldn't uncomment the line. Doing so may cause
# run-time problems. In some cases "none" refers to no default
# setting at all, while in other cases it refers to a valid
# option - the comments for that keyword indicate if this is the
# case.
#
# Configuration options can be included using the "include" directive.
# Include takes a list of files to include. Quoting and wildcards is
# supported.
#
# For example,
#
# include /path/to/included/file/squid.acl.config
#
# Includes can be nested up to a hard-coded depth of 16 levels.
# This arbitrary restriction is to prevent recursive include references
# from causing Squid entering an infinite loop whilst trying to load
# configuration files.
# # General Setup
# General options, these should all be left as-is (except the hostname) unless you know what you are doing.
http_port 8080 #port yang digunakan untuk squid
icp_port 3130
htcp_port 4827
visible_hostname syahroni-desktop #Replace "server_hostname" with the hostname of your Ubuntu machine
cache_mem 16 MB
refresh_pattern . 0 20% 8640
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
# snews 563
# gopher 70
# wais 210
#acl www_ports src 80 443
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
access_log /var/log/squid/access.log squid
hosts_file /etc/hosts
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl ftp_ports src 21
acl localhost src 127.0.0.1/32
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl CONNECT method CONNECT
acl PURGE method PURGE
acl badsites dstdomain "/usr/local/etc/restricted-sites.squid"
acl goodsites dstdomain "/usr/local/etc/allowed-sites.squid"
### added by squish (begin)
# acl's for squish - autodetected, sometimes
# acl SQUISHLOC dst syahroni-desktop
# acl SQUISHED1 proxy_auth -i "/etc/squid/squished"
# acl SQUISHED2 ident "/etc/squid/squished"
# acl SQUISHED3 src "/etc/squid/squished"
# Error info that says you're squished
deny_info http://syahroni-desktop/squish/?squished& SQUISHED1
# deny_info http://syahroni-desktop/squish/?squished& SQUISHED2
deny_info http://syahroni-desktop/squish/?squished& SQUISHED3
# HTTP access controls for squish
# http_access allow SQUISHLOC
# http_access allow password !SQUISHED1
# http_access deny SQUISHED1
# http_access deny SQUISHED2
# http_access deny SQUISHED3
### added by squish (end)
http_access allow goodsites
http_access deny badsites
http_access allow manager localhost
http_access deny manager
http_access allow PURGE localhost
http_access deny PURGE
# HTTP Access
# Allows access to HTTP(S) webpages. Comment these lines out if you don't want to allow access to HTTP(S) webpages.
acl wwwusers src 0.0.0.0/0.0.0.0
http_access allow all
# FTP Access
# Allows FTP Access, comment these lines out if you don't want to allow FTP Access
#ftp_user Squid@domain1.com
#ftp_passive off
#acl ftpusers src 0.0.0.0/0.0.0.0
#http_access allow ftpusers ftp_ports
# Deny All Statements
# These are here mostly for reference, but you may want to use them depending on your setup.
# If you don't know what these are, leave them alone.
#never_direct allow all
#always_direct deny all
#http_access deny all
#icp_access allow all
#miss_access allow al
http_reply_access allow all
Buat Structure Cache Directory
$sudo squid -z
Test Squid
$sudo squid -d 1 -D
Menjalankan Squid
$sudo squid -sYD
Install SARG (Squid Analisys Report Generator)
Sebelum menginstall SARG anda diharuskan menginstall apache terlebih dahulu
$sudo apt-get install apache2 sarg
Edit file sarg.conf dan pastikan ada baris ini
access_log /var/log/squid/access.log
$sudo nano /etc/squid/sarg.conf
Jalankan sarg
$sudo sarg
SARG dapat diakses di http://ipaddresskomputeranda/squid-reports
No comments:
Post a Comment
Beri Pesan