Install Squid Head

CATATAN SESUDAH TERINSTALL FRESH UBUNTU VERSI 12.
04 ATAU SE ATASNYA
KEMUDIAN IKUTI LANGKAH DI BAWAH INI DENGAN TRIAL ERROR
## update & instal repo ##
file di bawah ini copas dan paste di nano /etc/apt/sources.list # dgn catatan yg
bawaan di hapuss
===========================
deb http://kambing.ui.ac.id/ubuntu/ precise-proposed main restricted universe mu
ltiverse
deb http://kambing.ui.ac.id/ubuntu/ precise-security main restricted universe mu
ltiverse
deb http://kambing.ui.ac.id/ubuntu/ precise-updates main restricted universe mul
tiverse
deb http://kambing.ui.ac.id/ubuntu/ precise main restricted universe multiverse
paket update ubuntunya
======================
apt-get update -y && apt-get install devscripts -y && apt-get install build-esse
ntial -y && apt-get install openssl -y && apt-get install libssl-dev -y && apt-g
et install fakeroot -y && apt-get install libcppunit-dev -y && apt-get install l
ibsasl2-dev -y && apt-get install cdbs -y && apt-get install ccze -y && apt-get
install libfile-readbackwards-perl -y && apt-get install libcap2 -y && apt-get i
nstall libcap-dev -y && apt-get install libcap2-dev -y && apt-get install sysv-r
c-conf -y
##donwlod squid ke web langusng
=========================================
buat folder dulu
mkdir /squid3
kemudian cd /squid3 lalu
copas bawah ini ke terminal..
wget http://www.squid-cache.org/Versions/v3/3.5/squid-3.HEAD-20140903-r13573.tar
.gz #sesudah down finish
extract file nya...
tar xzvf squid-3.HEAD-20140903-r13573.tar.gz #sesudah di extract
kemudian
squid-3.HEAD-20140903-r13573
setelah itu di compile
=====================================
config compile bisa di tambahkan opsi opsi tergantung kita mau di tambahkan apa
sesuia kebutuhan
================================================================================
====================
./configure --prefix=/usr --bindir=/usr/bin \
--sbindir=/usr/sbin --libexecdir=/usr/lib/squid \
--sysconfdir=/etc/squid --localstatedir=/var \
--includedir=/usr/include --datadir=/usr/share/squid \
--infodir=/usr/share/info --mandir=/usr/share/man \
--srcdir=. --disable-dependency-tracking \
--disable-strict-error-checking --enable-storeio=ufs,aufs,diskd \
--enable-removal-policies=lru,heap --disable-ipv6 \
--disable-wccp --disable-wccpv2 --enable-kill-parent-hack \
--enable-snmp --enable-cachemgr-hostname=proxy \
--enable-cache-digests --disable-select \
--enable-http-violations --enable-linux-netfilter \
--enable-follow-x-forwarded-for --disable-ident-lookups \
--disable-auth-basic --enable-x-accelerator-vary \
--enable-zph-qos --enable-ssl-crtd --with-openssl --without-gnutls --with-defaul
t-user=proxy --with-logdir=/var/log/squid \
--with-pidfile=/var/run/squid.pid --with-swapdir=/var/spool/squid \
--with-aufs-threads=32 --with-dl --with-large-files --enable-ltdl-convenience \
--with-filedescriptors=65536
make && make install
permision folder cache sesuai folder chace yg di buat
=====================================================
contoh bawah ini folder cache proxy saya
cd
chown proxy.proxy /c1 && chown proxy.proxy /c2 && chown proxy.proxy /c3 && chmod
777 /c1 && chmod 777 /c2 && chmod 777 /c3
script di bawah ini nanti di copas ke nano /etc/init.d/squid <<<copas di sini..

catatan apabila gk ada file squid,di buat dulu..setelah di copas save..
lalu kasih permissinon nya jgn lupa
chmod +x /etc/init.d/squid
update-rc.d squid defaults
/etc/init.d/squid stop
======================================================================
#! /bin/sh
#
# squid3
Startup script for the SQUID HTTP proxy-cache.
#
# Version:
@(#)squid3.rc 1.0 07-Jul-2006 luigi@debian.org
#
### BEGIN INIT INFO
# Provides:
squid
# Required-Start:
$network $remote_fs $syslog
# Required-Stop:
$network $remote_fs $syslog
# Should-Start:
$named
# Should-Stop:
$named
# Default-Start:
2 3 4 5
# Default-Stop:
0 1 6
# Short-Description: Squid HTTP Proxy version 3.x
### END INIT INFO
NAME=squid
DESC="Squid HTTP Proxy 3.x"
DAEMON=/usr/sbin/squid
PIDFILE=/var/run/$NAME.pid
CONFIG=/etc/squid/squid.conf
SQUID_ARGS="-YC -f $CONFIG"
[ ! -f /etc/default/squid ] || . /etc/default/squid
. /lib/lsb/init-functions
PATH=/bin:/usr/bin:/sbin:/usr/sbin
[ -x $DAEMON ] || exit 0
ulimit -n 65536
find_cache_dir () {
w="
" # space tab
res=`sed -ne '

s/^'$1'['"$w"']\+[^'"$w"']\+['"$w"']\+$[^'"$w"']\+$.*$/\1/p;
t end;
d;
:end q' < $CONFIG`
[ -n "$res" ] || res=$2
echo "$res"
}
find_cache_type () {
w="
" # space tab
res=`sed -ne '
s/^'$1'['"$w"']\+$[^'"$w"']\+$.*$/\1/p;
t end;
d;
:end q' < $CONFIG`
[ -n "$res" ] || res=$2
echo "$res"
}
grepconf () {
w="
" # space tab
sq=/etc/squid/squid.conf
# sed is cool.
res=`sed -ne '
s/^'$1'['"$w"']\+$[^'"$w"']\+$.*$/\1/p;
t end;
d;
:end q' < $sq`
[ -n "$res" ] || res=$2
echo "$res"
}
create_run_dir () {
run_dir=/var/run/squid
usr=`grepconf cache_effective_user proxy`
grp=`grepconf cache_effective_group proxy`
if [ "$(stat -c %U $run_dir)" != "$usr" ] ||
[ "$(stat -c %G $run_dir)" != "$grp" ] ; then
if [ "$(dpkg-statoverride --list $run_dir)" = "" ] ; then
chown -R $usr:$grp $run_dir
fi
fi
}
start () {
cache_dir=`find_cache_dir cache_dir`
cache_type=`find_cache_type cache_dir`
#
# Create spool dirs if they don't exist.
#
if [ "$cache_type" = "coss" -a -d "$cache_dir" -a ! -f "$cache_dir/strip
e" ] || [ "$cache_type" != "coss" -a -d "$cache_dir" -a ! -d "$cache_dir/00" ]
then
log_warning_msg "Creating $DESC cache structure"
$DAEMON -z -f $CONFIG
fi
umask 027
ulimit -n 65535
cd $cache_dir
start-stop-daemon --quiet --start \
--pidfile $PIDFILE \
--exec $DAEMON -- $SQUID_ARGS < /dev/null
return $?
}
stop () {
PID=`cat $PIDFILE 2>/dev/null`
start-stop-daemon --stop --quiet --pidfile $PIDFILE --exec $DAEMON
#
#
Now we have to wait until squid has _really_ stopped.
#
sleep 2
if test -n "$PID" && kill -0 $PID 2>/dev/null
then
log_action_begin_msg " Waiting"
cnt=0
while kill -0 $PID 2>/dev/null
do
cnt=`expr $cnt + 1`
if [ $cnt -gt 24 ]
then
log_action_end_msg 1
return 1
fi
sleep 5
log_action_cont_msg ""
done
return 0
else
return 0
fi
}
case "$1" in
start)
log_daemon_msg "Starting $DESC" "$NAME"
if start ; then
log_end_msg $?
else
log_end_msg $?
fi
;;
stop)
log_daemon_msg "Stopping $DESC" "$NAME"
if stop ; then
log_end_msg $?
else
log_end_msg $?
fi
;;
reload|force-reload)
log_action_msg "Reloading $DESC configuration files"
start-stop-daemon --stop --signal 1 \
--pidfile $PIDFILE --quiet --exec $DAEMON
;;
restart)
log_daemon_msg "Restarting $DESC" "$NAME"
stop
if start ; then
log_end_msg $?
else
log_end_msg $?
fi
;;
status)
status_of_proc -p $PIDFILE $DAEMON $NAME && exit 0 || exit 3
;;
*)
echo "Usage: /etc/init.d/$NAME {start|stop|reload|force-reload|restart|s
tatus}"
exit 3
;;
esac
exit 0
## copy squid.conf & store-id PUNYA ANDA KE /etc/squid/ ##
================================
## permision squid.conf serta store-id ##
============================
chown proxy.proxy /etc/squid/squid.conf && chown proxy.proxy /etc/squid/storeid.
pl && chmod 777 /etc/squid/squid.conf && chmod 777 /etc/squid/storeid.pl
buat SSL Bump nya
==============
cd /etc/squid
mkdir ssl_cert
cd ssl_cert
openssl genrsa -out tukang-comot-indonesia.com.private 2048
openssl req -new -key tukang-comot-indonesia.com.private -out tukang-comot-indon
esia.com.csr
openssl x509 -req -days 3652 -in tukang-comot-indonesia.com.csr -signkey tukangcomot-indonesia.com.private -out tukang-comot-indonesia.com.cert
cd
mkdir /var/squid
cd /var/squid
mkdir ssl_db
cd
chown -R nobody /var/squid/ssl_db
/usr/lib/squid/ssl_crtd -c -s /var/squid/ssl_db/certs
chown -R proxy:proxy /var/squid/ssl_db
# permiss folder lognya ##
================================
chown proxy.proxy /var/log/squid && chmod 777 /var/log/squid
buat log nya dulu kalau blum ada

===================================
cd /var/log/squid
touch /var/log/squid/access.log && touch /var/log/squid/store.log && touch /var/
log/squid/cache.log && chown proxy:proxy access.log && chown proxy:proxy cache.l
og && chown proxy:proxy store.log && chmod 777 access.log && chmod 777 cache.log
&& chmod 777 store.log && mkdir yt && chown proxy:proxy yt && chmod 777 yt
=================================
buat swap direk folder cachenya
===============================
squid -z
squid -NDd1 &
cek konfig nya ada yg errror ap tidak
=====================================
squid -k parse
squid -k reconfigure
squid -Nd1
jika tidak ada yg error lanjut
/etc/init.d/squid restart
## copas iptable bawah ini ke /etc/rc.local di atasnya exit 0##
==============
iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -d 0/0 -j MASQUERADE
iptables -t nat -A PREROUTING -p tcp --dport 80 -s 192.168.1.0/24 -d 0/0 -j REDI
RECT --to-port 3128
iptables -t nat -A PREROUTING -p tcp --dport 443 -s 192.168.1.0/24 -d 0/0 -j RED
IRECT --to-port 3129
==================================================
cek
ps ax | grep squid #contoh di bawah ini sudah jalan
========================================================
14168 ?
Ss
0:00 /usr/sbin/squid -YC -f /etc/squid/squid.conf
14833 ?
Sl
5:57 (squid-1) -YC -f /etc/squid/squid.conf
14834 ?
S
0:00 (ssl_crtd) -s /var/squid/ssl_db/certs/ -M 4MB
14835 ?
S
14836 ?
S
14837 ?
S
14838 ?
S
14839 ?
S
0:01 /usr/bin/perl /etc/squid/store-id.pl
14840 ?
S
14841 ?
S
14842 ?
S
14843 ?
S
14844 ?
S
14845 ?
S
14846 ?
S
14847 ?
S
14848 ?
S
15488 pts/0
S+
0:00 grep --color=auto squid
-b
-b
-b
-b
-b
4096
4096
4096
4096
4096
=================================================================
## untuk mangle & route ## JANGAN MAIN COPAS BUAT MANUAL SAJA
=================================================================
/ip fi ma
add chain=postrouting action=mark-connection new-connection-mark=proxy passthrou
gh=yes dscp=12
add chain=postrouting action=mark-connection new-connection-mark=proxy passthrou
gh=yes content=X-Cache: HIT
add chain=postrouting action=mark-packet new-packet-mark=proxy-hit passthrough=n
o connection-mark=proxy
add chain=prerouting action=mark-routing new-routing-mark=redirect-to-proxy pass
through=no src-address=192.168.20.0/24
* Catatan = IP 192.168.20.0/24 adalah Ip Lan
/ip route
add check-gateway=ping distance=1 gateway=192.168.10.10 routing-mark=redirect-to
-proxy
* Catatan = IP 192.168.20.0/24 adalah Ip Proxy
cek di terminal puty
======================
tail -f /var/log/squid/access.log
|
|
|
|
|
ccze
grep HIT | ccze
grep TCP_HIT
grep HIT
ccze
TAMBAHAN SILAHKAN INSTALL DNS UNBOUND SUPAYA LEBIH CEPAT DAN RESPONSIF
BISA DI CARI DI GOOGLE UNTUK TRIK UNBOUN NYA....
SEMOGA SUKSES AMINNN

Install Squid Head

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Install Squid Head

Uploaded by

Copyright:

Available Formats

CATATAN SESUDAH TERINSTALL FRESH UBUNTU VERSI 12.

script di bawah ini nanti di copas ke nano /etc/init.d/squid <<<copas di sini..

res=`sed -ne '

buat log nya dulu kalau blum ada

You might also like