FGF
.
SETELAH KONFIGURASI GATEWAY SUDAH SELESAI
MAKA LANJUTKAN DENGAN KONFIGURASI SQUID
=SEBELUMNYA=
INSTAL DULU SQUID LEWAT SYNAPTICK MANAGER
SETELAH SELESAI DI PASANG
BUKA KONFIGURASI SQUID
MASUK DI SYSTEM BERKAS/etc/squid
IKUTI PETUNJUK DI BAWAH INI
YANG BERWARNA HIJAU YAITU KAYA YANG HARUS ANDA CARI TERLEBIH DAHULI
WARNA KUNING GANTI DAN SESUAIKAN DENGAN KEBUTUHAN ANDA
# WELCOME TO SQUID 2.7.STABLE7
# ----------------------------
#
# This is the default Squid configuration file. You may wish
# to look at the Squid home page (http://www.squid-cache.org/)
# for the FAQ and other documentation.
#
# The default Squid config file shows what the defaults for
# various options happen to be. If you don't need to change the
# default, you shouldn't uncomment the line. Doing so may cause
# run-time problems. In some cases "none" refers to no default
# setting at all, while in other cases it refers to a valid
# option - the comments for that keyword indicate if this is the
# case.
#
# OPTIONS FOR AUTHENTICATION
# -----------------------------------------------------------------------------
# ACCESS CONTROLS
# -----------------------------------------------------------------------------
# acl aclname srcdomain .foo.com ... # reverse lookup, client IP
acl badsite dstdomain "/etc/squid/badsite.txt" # Destination server from URL
# acl aclname srcdom_regex [-i] xxx ... # regex matching client name
#Recommended minimum configuration:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
# should be allowed
acl lanku src 192.168.50.0/24 # RFC1918 possible internal network
#
acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
#Recommended minimum configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access deny manager
# Only allow purge requests from localhost
http_access allow purge localhost
http_access deny purge
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
http_access deny badsite
http_access allow lanku
http_access allow localhost
# And finally deny all other access to this proxy
http_access deny all
#Default:
icp_access deny all
#
#Allow ICP queries from local networks only
icp_access deny all
# NETWORK OPTIONS
# -----------------------------------------------------------------------------
# Squid normally listens to port 3128
http_port 3128
# MEMORY CACHE OPTIONS
# -----------------------------------------------------------------------------
#Default:
cache_mem 32 MB
#Default:
maximum_object_size_in_memory 250 KB
#Default:
memory_replacement_policy lru
# DISK CACHE OPTIONS
# -----------------------------------------------------------------------------
#Default:
cache_dir ufs /var/spool/squid 100 16 256
#Default:
minimum_object_size 2 KB
#Default:
maximum_object_size 20480 KB
#Default:
cache_swap_low 90
cache_swap_high 95
# LOGFILE OPTIONS
# -----------------------------------------------------------------------------
access_log /var/log/squid/access.log squid
#Default:
logfile_daemon /usr/lib/squid/logfile-daemon
#Default:
cache_log /var/log/squid/cache.log
#Default:
cache_store_log /var/log/squid/store.log
# ADMINISTRATIVE PARAMETERS
# ------
#Default:
cache_mgr jaya@smk-latanro.sch.id
visible_hostname smk-latanro.sch.id
# ICP OPTIONS
# -----------------------------------------------------------------------------
#Default:
icp_port 3130
# ERROR PAGE OPTIONS
# -----------------------------------------------------------------------------
#Default:
error_directory /usr/share/squid/errors/en
# OPTIONS INFLUENCING REQUEST FORWARDING
# -----------------------------------------------------------------------------
# ADVANCED NETWORKING OPTIONS
# -----------------------------------------------------------------------------
# TAG: max_filedescriptors
# The maximum number of filedescriptors supported.
#
# The default "0" means Squid inherits the current ulimit setting.
#
# Note: Changing this requires a restart of Squid. Also
# not all comm loops supports values larger than --with-maxfd.
#
#Default:
# max_filedescriptors 0
# TAG: accept_filter
# FreeBSD:
#
# The name of an accept(2) filter to install on Squid's
# listen socket(s). This feature is perhaps specific to
# FreeBSD and requires support in the kernel.
#
# The 'httpready' filter delays delivering new connections
# to Squid until a full HTTP request has been received.
# See the accf_http(9) man page for details.
#
# The 'dataready' filter delays delivering new connections
# to Squid until there is some data to process.
# See the accf_dataready(9) man page for details.
#
# Linux:
#
# The 'data' filter delays delivering of new connections
# to Squid until there is some data to process by TCP_ACCEPT_DEFER.
# You may optionally specify a number of seconds to wait by
# 'data=N' where N is the number of seconds. Defaults to 30
# if not specified. See the tcp(7) man page for details.
#EXAMPLE:
## FreeBSD
#accept_filter httpready
## Linux
#accept_filter data
#
#Default:
# none
# TAG: tcp_recv_bufsize (bytes)
# Size of receive buffer to set for TCP sockets. Probably just
# as easy to change your kernel's default. Set to zero to use
# the default buffer size.
#
#Default:
# tcp_recv_bufsize 0 bytes
# TAG: incoming_rate
# This directive controls how aggressive Squid should accept new
# connections compared to processing existing connections.
# The lower number the more frequent Squid will look for new
# incoming requests.
#
#Default:
# incoming_rate 30
# DNS OPTIONS
# -----------------------------------------------------------------------------
#Default:
# ipcache_size 1024
# ipcache_low 90
# ipcache_high 95
SETELAH LANGKAH-LANGKAH DI ATAS TELAH SELESAI
LANJUTKAN DENGAN LANGKAH DI BAWAH INI
Buka Kembali Terminal
Lalu Ketikkan :
/etc/init.d/squid start
Squid –k reconfigure
Setting Di Client
Kasi ip client ip : 192.168.50.2 keatas
ip di atas bisa beruba sesuai dengan gatewai yang anda buat)
subnet mask : 255.255.255.0
Defaul Gateway : 192.168.50.1
Preferred DNS server : 202.134.1.10
0 komentar:
Posting Komentar