install PROXY di Virtual BOX (sesi 4)

Lanjutan  Sesi 3

Kita lanjut pake Aplikasi WinSCP dan Putty (biar mudah copy pastenya)..Kalau belum ada download dan install
http://winscp.net/download/winscp556setup.exe
http://the.earth.li/~sgtatham/putty/latest/x86/putty-0.63-installer.exe

 Klik Yes
 Open Putty dengan meng-klik toolbar Putty
 pilih yes

 Masukin password user yang tadi dibuat

Install SQUID
Copy paste command dibawah ini :
sudo su
sudo apt-get install devscripts -y
sudo apt-get install libcap-*
sudo apt-get install openssl -y
sudo apt-get install ccze -y
wget http://www.squid-cache.org/Versions/v3/3.4/squid-3.4.9.tar.gz
tar xzvf squid-3*
cd squid-3*
./configure --prefix=/usr \
--bindir=/usr/bin \
--sbindir=/usr/sbin \
--libexecdir=/usr/lib/squid \
--sysconfdir=/etc/squid \
--localstatedir=/var \
--libdir=/usr/lib \
--includedir=/usr/include \
--datadir=/usr/share/squid \
--enable-err-languages=English \
--enable-default-err-language=English \
--infodir=/usr/share/info \
--mandir=/usr/share/man \
--disable-dependency-tracking \
--enable-storeio=ufs,aufs,diskd \
--enable-removal-policies=lru,heap \
--enable-icap-client \
--disable-wccp \
--disable-wccpv2 \
--enable-follow-x-forwarded-for \
--enable-x-accelerator-vary \
--enable-zph-qos \
--enable-snmp \
--with-default-user=proxy \
--with-logdir=/var/log/squid \
--with-pidfile=/var/run/squid.pid \
--with-large-files \
--enable-underscores \
--disable-auth \
--enable-async-io \
--with-pthreads \
--disable-ipv6
make && make install
sudo cp /etc/squid/squid.conf /etc/squid/squid.conf.asli
sudo chmod a-w /etc/squid/squid.conf.asli
cd
mkdir /cache
chown -R proxy:proxy /cache
chown -R proxy:proxy /var/log/squid
nano etc/squid/squid.conf
EDIT bagian yang saya HIGHLIGHT KUNING(sesuaikan dengan nama folder dan besaran cache
Anda)
#
# Recommended minimum configuration:
#
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
acl localnet src fc00::/7 # RFC 4193 local private network range
acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
#
# Recommended minimum Access Permission configuration:
#
# Deny requests to certain unsafe ports
http_access deny !Safe_ports
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
# Only allow cachemgr access from localhost
http_access allow localhost manager
http_access deny manager
# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#
# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
http_access allow localnet
http_access allow localhost
# And finally deny all other access to this proxy
http_access deny all
# Squid normally listens to port 3128
http_port 3128
# Uncomment and adjust the following to add a disk cache directory.
cache_dir ufs /cache 3000 16 256
# Leave coredumps in the first cache dir
coredump_dir /cache
#
# Add any of your own refresh_pattern entries above these.
#
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
tekan Ctrl+o lalu ENTER untuk menyimpan perubahan
tekan Ctrl+x untuk keluar dari nano editor
lanjut copy paste command dibawah ini
squid -k parse
squid -z
tekan ENTER saja
squid start
Test Manual Proxy di Browser
coba untuk browsing
Tutup dan buka lagi website detik.com, pada Putty ketik command tail -f
/var/log/squid/access.log | ccze
Untuk HTTP dah bisa dan berhasil
lanjut ke HTTPS ke sesi 5


0 Response to "install PROXY di Virtual BOX (sesi 4)"

Post a Comment

Ilmu ibarat sempax, kita harus menggunakannya, tapi tak perlu memamerkannya