Professional Documents
Culture Documents
Advanced Proxy Server
Advanced Proxy Server
Advanced Proxy Server
8- Then to allow store cache this path by delete # and number according to you need
14- After that need to configure port squid that allow client use on web browser
15- Then client can access to internet by using proxy
16- Now we want to deny client not allow use internet need to apply rule to ACL like below
17- After that restart services squid again then client access internet it show like this
18- Now we want block our client not allow use http://www.yahoo.com need to create rule
like this on access list
19- After that we apply to rule that created on ACL for block website yahoo from client
22- Now client download file ( .exe ) from internet like below
23- After click on file download exe it will show like this on web
27- And we disable this line to Security on Squid that allow client to affect Rule
31- Then we use command squidGuard –C all to create file extentsion (.db)
32- Then it create file *.db automatically like below and change owner to squid below this
33- Now we take this website from black list to access from client web browser
34- Then access web site from black list it will redirect to timetables.cist.lan auto like below
35- Now we extract file shallalist to path below
36- After extract we will see all filed by type of each files in folder BL
delay_pool 1
delay_class 1 1
delay_parameters 1 1024/2048
delay_access 1 allow LAN_10_2
42- Then when we download will see the speed on DU metter or look on process file
download from website that link to packet
**Authentication users from Active Directory
Echo 1 > /proc/sys/net/ipv4/ip_forward
0- iptables -t nat -A POSTROUTING -o eth2 -j MASQUERADE
2- Put the gateway of dns local is ip address proxy server that connected with interface dns
local
3- Then on Forwarders we add name DNS publish and then add IP address of DNS publish
4- Then Edit file /etc/resolve.conf put the name and IP address DNS local like this not use
DNS publish
5- And on proxy server by yast we put the name and IP address our DNS local
6- Use IPTables script to allow DNS local to use DSN publish and echo command to allow
difference LAN and ping each other
7- And by yast network services windows domain member ship then put the Domain
name of DNS that we want to joint OK
8- Then joint domain must be successful and can install packet until finish when joint domain
11- And file squid.conf we create ACL like this have ACL & auth
12- Then we apply rule to acl that created on http_access
13- After that on client open web browser if connected to Internet by proxy server it must be
authentication user name & password like below user from AD then put user name and
password client can access to internet
14- After put user name & password client can access internet like below by authentication
user name & password user from Active Directly
9-After complete the information click on Click here to try again it will show like this on web
page click here continue
10- Then it will show message on web page to delete directory install on path
/srv/www/htdocs/mysar/www/ and delete folder install
11- After alert message on web page we go to delete folder on this path Start using mysar !
on web page
12- After delete install folder it will show like this on web page
13- Then we use this command to use access log show on mysar database then it will show on
web page
14- And if we want to restart this command automatically can use crontab –e and write this
content ( 6 * * * * ) it mean every hour at 6 minute it will back up report to show on mysar
15- Then after generate report it will show on web page mysar all client IP address and user
access internet, speed user use across proxy
Sarg installation
5- Command - : sarg-reports daily: for generate report users access internet every day to show
on sarg web page
- : sarg: sarg command use to create directory sarg on path /srv/www/htdocs/
6- Then we access web page by http://10.1.1.1/sarg it will show on web page like this
7- Then we can select one user that access internet show on sarg to see detail user access
internet like below