Forward Proxy:-
Provide proxy access to Web-browsers.
Squild installation and configuration:
#yum install squid
Configuration file :- vi /etc/squid/squid.conf
Log File :- tail -f /var/log/squid/access.log
Directives.
acl
acl aclname acltype "file"
To configure complete access, give aclname as :
localnet.
Ex:-
acl localnet src <Server/Destop Hostname>
Acl directive examples:-
# acl aclname acltype argument ...
#acl aclname acltype "file" ...
# Recommended minimum configuration:
src: source (client) IP addresses
#acl test src <IP>
url_regex: URL regular expression pattern matching
#acl video url_regex tube
#acl msn url_regex msn
dstdomain: destination (server) domain name
#acl fb dstdomain facebook.com
#acl fb1 dstdomain www.facebook.com
port: destination (server) port number
#acl denyports port 80
Acl iprange
#acl test src 128.0.0.1-191.0.0.1/32
Now, to deny or allow the syntax is
http_access allo/deny <rulename>
Find the below to allow or deny as per the created acl rules.
#http_access deny msn
#http_access deny video
#http_access deny fb
#http_access deny fb1
#http_access allow test
#http_access deny denyports
Provide proxy access to Web-browsers.
Squild installation and configuration:
#yum install squid
Configuration file :- vi /etc/squid/squid.conf
Log File :- tail -f /var/log/squid/access.log
Directives.
acl
acl aclname acltype "file"
To configure complete access, give aclname as :
localnet.
Ex:-
acl localnet src <Server/Destop Hostname>
Acl directive examples:-
# acl aclname acltype argument ...
#acl aclname acltype "file" ...
# Recommended minimum configuration:
src: source (client) IP addresses
#acl test src <IP>
url_regex: URL regular expression pattern matching
#acl video url_regex tube
#acl msn url_regex msn
dstdomain: destination (server) domain name
#acl fb dstdomain facebook.com
#acl fb1 dstdomain www.facebook.com
port: destination (server) port number
#acl denyports port 80
Acl iprange
#acl test src 128.0.0.1-191.0.0.1/32
Now, to deny or allow the syntax is
http_access allo/deny <rulename>
Find the below to allow or deny as per the created acl rules.
#http_access deny msn
#http_access deny video
#http_access deny fb
#http_access deny fb1
#http_access allow test
#http_access deny denyports