1. Caching server
2. Filters access to the Net
3. Efficient bandwidth usage
4. Supports a wide criteria of ACLs (dstdomain, src_IP, Time of day, etc.)
Tasks:
1. Install Squid Proxy server
a. yum -y install squid
/etc/squid - primary configuration container
/etc/squid/squid.conf - primary configuration file
/usr/sbin/squidclient - used to test Squid Proxy server
/var/log/squid - primary log directory
/var/spool/squid - cache directory containter
2. Start Squid, and ensure that it starts when the system reboots
a. service squid start
b. chkconfig --level 35 squid on
Note: Ensure that ample/fast disk storage is available for: /var/spool/squid
Note: Squid defaults to TCP:3128
3. Configure Firefox browser to use Squid Proxy server
4. Configure Squid to allow LAN access through, to resources
a. nano /etc/squid/squid.conf
b. acl lan_users src 192.168.75.0/24
c. http_access allow lan_users
5. Deny 192.168.75.10, but allow ALL other users from the local subnet
a.
acl_lan_bad_users src 192.168.75.10
http_access deny acl_lan_bad_users
No comments:
Post a Comment