Tutorial Install Proxy (Legacy Tutorial)

16Jun2008 Filed under: Tutorial Author: Lucky

Gw sebenernya udah nulis tutorial ini udah lama buangeeeeeeeettt.. aroud 2006 apa 2005an gitu deh.. lupa2 inget.. pokoknya mah waktu jaman2 masih nongkrong di DalNet gitu dewh..

And let’s begin the legacy tutorial!

1. Donlod dulu squid nya http://www.squid-cache.org/Versions/v2/2.5/squid-2.5.STABLE11.tar.gz

2. klo dah.. coba di tar -zxvf squid-2.5.STABLE11.tar.gz

3. beres tar, masuk ke folder nya .. daaaann.. configure

Rumus untuk configure squid yg baik dan benar adalah :

./configure –prefix=/usr/local/squid –exec-prefix=/usr/local/squid –enable-delay-pools –enable-cache-diggests –enable-poll –disable-ident-lookups –enable-async-io=16 –enable-auth-modules –enable-removal-policies –enable-snmp

Nah itu rumus nya.. panjang sih, tp copy paste aja biar cepet

4. setelah itu bwt user squid nya dulu.. n ini harus butuh root login bwt adduser nya

Rumus nya :

1+1= 2 loh..?

useradd -d /usr/local/squid/ -r -s /dev/null squid > /dev/null 2>&1

copy paste aja ke box nya.. okie? sip..!

4. lalu pencet/ktik make all then make install

5. nah skr ke dir /usr/local/squid/etc liat squid.conf

6. edit deh squid.conf nya seperti begini

ini cuman contoh conf aja .. jangan di copy semua nya ntar error

##contoh

http_port 202.155.166.24:8888 <= dimana 8888 adalah portnya##

hierarchy_stoplist cgi-bin ?

acl QUERY urlpath_regex cgi-bin \?

no_cache deny QUERY

#Recommended minimum configuration:

#auth_param digest program <uncomment and complete this line>

#auth_param digest children 5

#auth_param digest realm Squid proxy-caching web server

#auth_param digest nonce_garbage_interval 5 minutes

#auth_param digest nonce_max_duration 30 minutes

#auth_param digest nonce_max_count 50

#auth_param ntlm program <uncomment and complete this line to activate>

#auth_param ntlm children 5

#auth_param ntlm max_challenge_reuses 0

#auth_param ntlm max_challenge_lifetime 2 minutes

#auth_param ntlm use_ntlm_negotiate off

#auth_param basic program <uncomment and complete this line>

auth_param basic children 5

auth_param basic realm Squid proxy-caching web server

auth_param basic credentialsttl 2 hours

auth_param basic casesensitive off

refresh_pattern ^ftp: 1440 20% 10080

refresh_pattern ^gopher: 1440 0% 1440

refresh_pattern . 0 20% 4320

#Examples:

#acl macaddress arp 09:00:2b:23:45:67

#acl myexample dst_as 1241

#acl password proxy_auth REQUIRED

#acl fileupload req_mime_type -i ^multipart/form-data$

#acl javascript rep_mime_type -i ^application/x-javascript$

#Recommended minimum configuration:

acl all src 0.0.0.0/0.0.0.0

acl manager proto cache_object

acl localhost src 127.0.0.1/255.255.255.255

acl to_localhost dst 127.0.0.0/8

###### masukan ip yang bole akses ######

acl warnet src 222.124.76.111/32

##############################

####

acl SSL_ports port 443 563

acl Safe_ports port 80 # http

acl Safe_ports port 21 # ftp

acl Safe_ports port 443 563 # https, snews

acl Safe_ports port 70 # gopher

acl Safe_ports port 210 # wais

acl Safe_ports port 1025-65535 # unregistered ports

acl Safe_ports port 280 # http-mgmt

acl Safe_ports port 488 # gss-http

acl Safe_ports port 591 # filemaker

acl Safe_ports port 777 # multiling http

acl CONNECT method CONNECT

http_access allow warnet

http_access allow manager localhost

http_access deny manager

# Deny requests to unknown ports

http_access deny !Safe_ports

# Deny CONNECT to other than SSL ports

http_access deny CONNECT !SSL_ports

http_access deny all

http_reply_access allow all

icp_access allow all

header_access From deny all

header_access Referer deny all

header_access Server deny all

header_access User-Agent deny all

header_access WWW-Authenticate deny all <- di deny kalau si squid nya ga mau ada popup¬? yg mengganggu

header_access Link deny all

header_replace User-Agent Cisco Cache Engine, Version 1.7.0

header_access Accept-Encoding deny all

header_access X-Forwarded-For deny all

header_access Via deny all

N.B: acl warnet src 222.124.76.111/32 <<– ganti IP inet kalian.. kalau pake IP itu di jamin ga bisa pake tu proxy

udah beres edit¬?nya? kalau udah save edit’an nya .. lalu…

7. lalu ktik

chown -R squid.squid /usr/local/squid

chmod 777 /usr/local/squid/var/logs/

chmod 777 /usr/local/squid/var/

8. Klo dah beres ktik, /usr/local/squid/sbin/squid -z

9. klo sukses creating swap nya.. lalu ktik /usr/local/squid/sbin/squid

10. cek ps -uax apakah ada proses squid nya? dan cek netstat -plnat apakah port nya sudah listen?

Kalau ada error pas running squid nya coba cari error nya kenapa ktik tail -f /var/logs/messeges

Kalau sudah ya… Enjoy your private proxeh !!

You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

3 Responses to “Tutorial Install Proxy (Legacy Tutorial)”

krustyclown
June 20th, 2008 at 1:16 pm

iye… gwe salah satu orang yang pernah ngopi artikel gwe buat blog yang di roxr… sebelom tuh roxr keparat tiba-tiba ilang dari peredaran…

- SIAL -

btw, artikelnya sangat membantu kok…
amrnao
May 19th, 2009 at 11:15 am

mas, ini under linux yaa??
untuk spesifikasi linuxnya apa ya mas??
thx be4

kalau bisa dibalas ke a_azzuri@yahoo.com
Lucky
May 25th, 2009 at 4:21 pm

Bisa under linux atau under windows, kalau under windows mungkin bisa di download binary windows nya dan konfigurasi yang ada disini bisa dipake..

Spek nya ga dipatok kok, jadi bisa running di low-end spek ampe high-end..

Entries (RSS)
Comments (RSS)

About this blog

Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Quisque sed felis. Aliquam sit amet felis. Mauris semper, velit semper laoreet dictum, quam diam dictum urna, nec placerat elit nisl in quam. Etiam augue pede, molestie eget, rhoncus at, convallis ut, eros. Aliquam pharetra. Nulla in tellus eget odio sagittis blandit. Maecenas at nisl. Nullam lorem mi, eleifend a, fringilla vel, semper at, ligula. Mauris eu wisi.

luckyahmad.com – Play my life