Berikut ini adalah konfigurasi squid yang berhasil di oprek, dengan konfigurasi ini, kiranya dapat mendongkrak akses internet anda. Hal yang paling penting adalah perhatikan IP Address yang ada di konfigurasi berikut, sesuaikan dengan ip lokal anda. Konfigurasi inipun dapat juga anda sesuaikan dengan squid distro Linux yang lain dan sesuaikan dengan kebutuhan anda . OK langsung ke TKP…Langkah-langkah nya,
1. install winscp, remote ip lokal CC, cari folder /ect/squid
2. back up dolo squid.conf anda terlebih dahulu, untuk menghindari kegagalan setting.
3. double click squid.conf, blok smua isi nya, delete, paste kan konfigurasi yang ada di blog ini dan sesuaikan ip local anda.
4. berikut konfigurasi squid clarkconnect versi community edition 4.3
5, setelah selesai mengkonfigurasi squid, restart squid anda dengan perintah # /etc/init.d/squid restart enter..
jika tidak ada kesalahan setting maka squid akan stop dan restart secara normal. jika ada error.. perhatikan error nya dan set ulang, restart squid…
==================================================
http_port 192.168.1.254:3128 #IP local.. sesuaikan dengan IP local anda
http_port 127.0.0.1:3128
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
maximum_object_size 4096 KB
ipcache_size 8192
ipcache_low 98
ipcache_high 99
fqdncache_size 8192
cache_dir ufs /var/spool/squid 500 16 256
redirect_program /usr/sbin/adzapper
redirect_children 10
auth_param ntlm children 15
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes
auth_param ntlm use_ntlm_negotiate on
auth_param basic program /usr/lib/squid/squid_ldap_auth -b “dc=smkyapisbiak,dc=net” -f “(&(objectClass=pcnProxyAccount)(uid=%s))” -h 127.0.0.1 -D “cn=manager,cn=internal,dc=smkyapisbiak,dc=net” -W /etc/squid/ldap.conf -s one -v 3 -U pcnProxyPassword -d
auth_param basic children 5
auth_param basic realm ClarkConnect Community Edition – Web Proxy
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
quick_abort_min 0 KB
quick_abort_max 0 KB
quick_abort_pct 95
half_closed_clients off
shutdown_lifetime 10 seconds
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.0/8
acl webconfig_lan src 192.168.1.0/24 #IP Network local.. sesuaikan dengan IP local anda
acl webconfig_to_lan dst 192.168.1.0/24 #IP Network local.. sesuaikan dengan IP local anda
acl to_localhost dst 127.0.0.0/8
acl password proxy_auth REQUIRED
acl privoxy dstdomain config.privoxy.org
acl SSL_ports port 443 563
acl SSL_ports port 81 10000
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl Safe_ports port 81 82 83 10000
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
acl sex url_regex -i “/etc/squid/sex”
deny_info ERR_ACCESS_DENIED sex
http_access deny sex
acl our_networks src 192.168.1.0/24 #IP Network local.. sesuaikan dengan IP local anda
http_access allow our_networks
http_access deny privoxy
http_access allow localhost
http_access allow webconfig_to_lan
http_access allow webconfig_lan
http_access deny all
http_reply_access allow all
icp_access allow all
reply_body_max_size 52428800 allow all
cache_effective_user squid
cache_effective_group squid
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
memory_pools off
memory_pools_limit 2048 MB
forwarded_for off
store_avg_object_size 13 KB
reload_into_ims on
error_directory /etc/squid/errors
maximum_single_addr_tries 3
delay_pools 1
delay_class 1 2
delay_parameters 1 -1/-1 16000/64000
coredump_dir /var/spool/squid
client_persistent_connections on
server_persistent_connections off
persistent_connection_after_error on
ie_refresh on
vary_ignore_expire on
follow_x_forwarded_for allow localhost
http_port 127.0.0.1:3128
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
maximum_object_size 4096 KB
ipcache_size 8192
ipcache_low 98
ipcache_high 99
fqdncache_size 8192
cache_dir ufs /var/spool/squid 500 16 256
redirect_program /usr/sbin/adzapper
redirect_children 10
auth_param ntlm children 15
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes
auth_param ntlm use_ntlm_negotiate on
auth_param basic program /usr/lib/squid/squid_ldap_auth -b “dc=smkyapisbiak,dc=net” -f “(&(objectClass=pcnProxyAccount)(uid=%s))” -h 127.0.0.1 -D “cn=manager,cn=internal,dc=smkyapisbiak,dc=net” -W /etc/squid/ldap.conf -s one -v 3 -U pcnProxyPassword -d
auth_param basic children 5
auth_param basic realm ClarkConnect Community Edition – Web Proxy
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
quick_abort_min 0 KB
quick_abort_max 0 KB
quick_abort_pct 95
half_closed_clients off
shutdown_lifetime 10 seconds
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.0/8
acl webconfig_lan src 192.168.1.0/24 #IP Network local.. sesuaikan dengan IP local anda
acl webconfig_to_lan dst 192.168.1.0/24 #IP Network local.. sesuaikan dengan IP local anda
acl to_localhost dst 127.0.0.0/8
acl password proxy_auth REQUIRED
acl privoxy dstdomain config.privoxy.org
acl SSL_ports port 443 563
acl SSL_ports port 81 10000
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl Safe_ports port 81 82 83 10000
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
acl sex url_regex -i “/etc/squid/sex”
deny_info ERR_ACCESS_DENIED sex
http_access deny sex
acl our_networks src 192.168.1.0/24 #IP Network local.. sesuaikan dengan IP local anda
http_access allow our_networks
http_access deny privoxy
http_access allow localhost
http_access allow webconfig_to_lan
http_access allow webconfig_lan
http_access deny all
http_reply_access allow all
icp_access allow all
reply_body_max_size 52428800 allow all
cache_effective_user squid
cache_effective_group squid
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
memory_pools off
memory_pools_limit 2048 MB
forwarded_for off
store_avg_object_size 13 KB
reload_into_ims on
error_directory /etc/squid/errors
maximum_single_addr_tries 3
delay_pools 1
delay_class 1 2
delay_parameters 1 -1/-1 16000/64000
coredump_dir /var/spool/squid
client_persistent_connections on
server_persistent_connections off
persistent_connection_after_error on
ie_refresh on
vary_ignore_expire on
follow_x_forwarded_for allow localhost
