Tuesday, 13 December 2011

### Squid Proxy Server ###



  1. Caching server
  2. Filters access to the Net
  3. Efficient bandwidth usage
  4. Supports a wide criteria of ACLs (dstdomain, src_IP, Time of day, etc.)


Tasks:
 1. Install Squid Proxy server
  a. yum -y install squid

/etc/squid - primary configuration container
/etc/squid/squid.conf - primary configuration file
/usr/sbin/squidclient - used to test Squid Proxy server
/var/log/squid - primary log directory
/var/spool/squid - cache directory containter

 2. Start Squid, and ensure that it starts when the system reboots
  a. service squid start
  b. chkconfig --level 35 squid on

Note: Ensure that ample/fast disk storage is available for: /var/spool/squid
Note: Squid defaults to TCP:3128

 3. Configure Firefox browser to use Squid Proxy server

 4. Configure Squid to allow LAN access through, to resources
  a. nano /etc/squid/squid.conf
  b. acl lan_users src 192.168.75.0/24
  c. http_access allow lan_users

 5. Deny 192.168.75.10, but allow ALL other users from the local subnet
  a.
acl_lan_bad_users src 192.168.75.10
http_access deny acl_lan_bad_users

No comments:

Post a Comment