Minggu, 30 Januari 2011

SETTING SQUID PROXY DI WINDOWS

Posted by Central004 15.16, under , |

Download Squid Proxy di situsnya langsung : DISINI

Download Squid yang sudah Jadi : DISINI

Tutorial :
  • Ekstrak Squid di direktori C:\
  • Buat folder di direktori D:\ dengan nama 'cache' (tanpa tanda petik)
  • Buka DOS atau Command Prompt dengan cara Start-Run- ketik cmd
  • Ketik Perintah berikut :
cd \squid\sbin (Enter)
squid -z (Enter)
squid -i (Enter)
squid (Enter)
squid -z artinya, perintah yang digunakan untuk membuat swap direktori
squid -i artinya, perintah yang digunakan untuk menginstall squid sebagai service
squid artinya menjalankan squid

  • Tekan Ctrl + C untuk menghentikan (stop) squid
  • Ketikan perintah : net start squid , sehingga muncul pesan berikut :
The Squid service is starting.
The Squid service was started successfully

Langkah terakhir Pengaturan Web Browser di PC Server & PC Client
PC Server :
  • Firefox/Cometbird/Flock
Tools - Options - Advanced - Network - Settings-Manual Proxy Configuration
IP Address 127.0.0.1 Port 3128
Beri tanda 'Cecklist' di kotak dialog Use the server proxy for all protocols
  • Opera
Settings - Preferences - Advanced - Network - Proxy Servers
Checklist HTTP, HTTPS, FTP, WAIS, Gopher,
Masukan IP Address & Port Sama dengan di setting Mozilla
  • Internet Explorer
Tools - Internet Options - Connections - LAN Settings
Beri tanda Checklist pada Use a Proxy for your LAN..bla..bla..
Masukan IP Address & Port Sama dengan di setting Mozilla

PC Client :
  • Firefox/Cometbird/Flock
Tools - Options - Advanced - Network - Settings-Manual Proxy Configuration
IP Address diisi IP Address PC server, Port 3128
Beri tanda 'Cecklist' di kotak dialog Use the server proxy for all protocols
  • Opera
Settings - Preferences - Advanced - Network - Proxy Servers
Checklist HTTP, HTTPS, FTP, WAIS, Gopher,
IP Address diisi IP Address PC server, Port 3128
  • Internet Explorer
Tools - Internet Options - Connections - LAN Settings
Beri tanda Checklist pada Use a Proxy for your LAN..bla..bla..
IP Address diisi IP Address PC server, Port 3128

Untuk setting agar Squid berjalan automatic atau Manual, pilih Start - Run, Setelah terbuka ketikan perintah services.msc, cari Squid & klik dua kali kemudian ganti dari automatic ke manual, tapi lebih baik tetap otomatis saja.

Untuk menghapus Squid, Start-Run-ketik cmd - ketik cd\squid - ketik squid -r.

Cara lain menjalankan Squid Start-Run - ketikan net start squid

Peringatan :
Pada file Squid.conf baris berikut :

acl localhost src 192.168.0.2/24
acl localnet src 192.168.0.0/24 # RFC1918 possible internal network

acl localhost src diisi dengan IP address PC Server, contoh :
IP address PC server anda 192.168.1.3, maka :

acl localhost src 192.168.1.3/24

dan acl localnet src menjadi :

acl localnet src 192.168.1.0/24 # RFC1918 possible internal network

Selamat Mencoba......!!!!


Script Squid Proxy :

#===================== AnJeL@-NeT==================
http_port 3128
cache_mgr AnJeL@-NeT
forwarded_for off
visible_hostname AnJeL@-NeT

server_http11 on

#=================== DNS TELKOM ==================
dns_nameservers 202.134.1.10 202.134.0.155

#=============== Cache dan Total Memory:6 ===============
cache_mem 300 MB

maximum_object_size 100 MB
maximum_object_size_in_memory 128 KB
cache_swap_low 98%
cache_swap_high 99%

cache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSF

#============== Log dan Cache Directories/Folder ===============
cache_dir ufs D:/cache 9000000 16 256

cache_access_log C:/squid/var/logs/access.log
cache_store_log c:/squid/var/logs/store.log
cache_log c:/squid/var/logs/cache.log
redirect_rewrites_host_header off
mime_table C:/squid/etc/mime.conf
pid_filename C:/squid/var/logs/squid.pid
coredump_dir C:/squid/var/logs/

acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
maximum_object_size 4194240 KB
maximum_object_size_in_memory 1024 KB
negative_ttl 2 minutes
half_closed_clients off

ipcache_size 4096
ipcache_low 95
ipcache_high 100

#================= LOG =========================
log_fqdn off
log_icp_queries off
buffered_logs off
emulate_httpd_log off

memory_pools off
reload_into_ims on
pipeline_prefetch on

acl all src all

acl sex url_regex -i "c:/squid/etc/squid/sex/sex.txt"
#acl notsex url_regex -i "c:/squid/etc/squid/notsex/notsex.txt"
http_access deny sex
#!notsex

acl manager proto cache_object
acl localhost src 192.168.0.2/24
acl localhost src 127.0.0.1/255.255.255.255

acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.0.0/24 # RFC1918 possible internal network

acl SSL_ports port 443 563
acl safe_ports port 6600-7000 #irc
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

#================= Yahoo! Messenger ===================
acl ym dstdomain .messenger.yahoo.com .psq.yahoo.com
acl ym dstdomain .us.il.yimg.com .msg.yahoo.com .pager.yahoo.com
acl ym dstdomain .rareedge.com .ytunnelpro.com .chat.yahoo.com
acl ym dstdomain .voice.yahoo.com

acl ymregex url_regex yupdater.yim ymsgr myspaceim

#================= Protokol lain Yahoo!Messenger ===============
acl ym dstdomain .skype.com .imvu.com

#========== Testing doang, siapa tahu bermanfaat =================
refresh_pattern ^http://([^/]+)yahoo\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)google\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)facebok\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)fbcdn\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)zynga\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)ninjasaga\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)texas_holdem\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)indowebster\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)4shared\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)yimg\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)plasa\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)detik\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)detikinet\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)detikhot\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)detikportal\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)google-analytics\..*$ 10080 80% 43200 reload-into-ims
refresh_pattern ^http://([^/]+)kapanlagi\..*$ 10080 80% 43200 reload-into-ims

#================= Manual configuration ===================
refresh_pattern ^http://(.*/?%29%2Fget_video\? 1440 50% 43200
refresh_pattern ^http://(.*/?%29%2Fvideoplayback\? 1440 50% 43200
refresh_pattern -i (get_video\?|videoplayback\?id|videoplayback.*id) 1440 50% 43200

#================= Website ===========================
refresh_pattern -i \.(class|css|js|ps|psf|html|xml)$ 1440 50% 43200
refresh_pattern -i \.(css\?|js\?)$ 1440 50% 43200

#================= Gambar ==========================
refresh_pattern -i \.(bmp|gif|jpeg|jpg|png|psd|tif|tiff)$ 1440 50% 43200
refresh_pattern -i \.(gif\?|jpg\?|png\?|jpeg\?|psd\?)$ 1440 50% 43200

#================= Multimedia ==========================
refresh_pattern -i \.(3gp|ac4|asf|au|avi|divx|flv|m4p|mid|mov|mp3|mp4)$ 1440 50% 43200
refresh_pattern -i \.(mpa|mpe|mpeg|mpg|qt|ra|rm|rmvb|swf|viv|wav|wmp|wmv)$ 1440 50% 43200

#================= Kompresor ==========================
refresh_pattern -i \.(7z|ace|arj|bin|bz2|deb|dmg|gz|gz2)$ 1440 50% 43200
refresh_pattern -i \.(iso|lha|lzh|rar|rpm|tar|tgz|txz|zip)$ 1440 50% 43200

#================= Windows =========================
refresh_pattern -i \.(ad|cab|dat|dll|exe|inc|qtm)$ 1440 50% 43200
refresh_pattern -i \.(doc|docx|hqf|pdf|ppt|pptx|rtf|txt|xls|xlsx)$ 1440 50% 43200

refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440

refresh_pattern cgi-bin 0 0% 0
refresh_pattern \? 0 20% 4320
refresh_pattern . 0 20% 4320

storeurl_access deny all

http_access allow manager localhost
http_access allow ym
http_access allow localhost
http_access allow localNet
http_access deny manager
http_access deny !Safe_ports
http_access deny all
http_reply_access allow all
icp_access allow all

#================= YouTube options. ==================
quick_abort_min -1 KB

cache allow all

header_access Proxy-Connection deny all
header_access Cache-Control deny all
header_access X-Cache deny all
header_access X-Cache-Lookup deny all
header_access X-Powered-By deny all
header_access Via deny all
header_access Forwarded-For deny all
header_access X-Forwarder-For deny all