Walnutz

Walnutz




Install Squid di OpenBSD (proxy)

November11

sebaiknya buat dahulu direktori cache pada waktu instalasi

SETTING PROXY OpenBSD
Extract squid
# mkdir /usr/local/src
# tar zxvf squid-2.5.STABLE14.tar.gz -C /usr/local/src

# groupadd squid
# useradd -m -d /cache -g squid -s /dev/null squid

Edit squid
# cd /usr/local/src/squid-2.5.STABLE14
# ee icons/Makefile.in
Ganti dari icondir=$(datadir)/icons
Menjadi icondir=$(libexecdir)/icons

# ee src/Makefile.in
Ganti dari DEFAULT_LOG_PREFIX=$(localstatedir)/logs
Menjadi DEFAULT_LOG_PREFIX=$(localstatedir)/log/squid
Ganti dari DEFAULT_PID_FILE=$(DEFAULT_LOG_PREFIX)/squid.pid
Menjadi DEFAULT_PID_FILE=$(localstatedir)/run/squid.pid
Ganti dari DEFAULT_SWAP_DIR=$(localstatedir)/cache
Menjadi DEFAULT_SWAP_DIR=/cache
Ganti dari DEFAULT_ICON_DIR=$(datadir)/icons
Menjadi DEFAULT_ICON_DIR=$(libexecdir)/icons

Kompilasi Squid
# cd /usr/local/src/squid-2.5.STABLE14
# ./configure –prefix=/usr –exec-prefix=/usr –bindir=/usr/sbin –libexecdir=/usr/lib/squid
–localstatedir=/var –sysconfdir=/etc/squid –enable-pf-transparent –enable-snmp –enable-ssl –enable-removal-policies=heap –enable-default-languages=English
–enable-err-languages=English –enable-delay-pools –enable-cache-digests –enable-poll –disable-ident-lookups –disable-hostname-checks –enable-storeio=diskd,ufs

# make
# make install
# mkdir -p /var/log/squid
# chown squid:squid /var/log/squid
# chmod 750 /var/log/squid
# chmod 750 /cache

Edit /etc/squid/squid.conf
http_port 3128
icp_port 0
cache_mem 6 MB
cache_dir diskd /cache x y 256 Q1=72 Q2=64 x (MB)=max 80% free spc
y = x * 1024 / 13 / 256 / 256 * 2
!!! store_dir_algorithm round-robin !!! Bila multi partisi
cache_store_log none
negative_ttl 2 minutes
cache_effective_user squid
cache_effective_group squid
maximum_object_size 32 KB
minimum_object_size 0 KB
cache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSF
ftp_user ampuh@yahoo.com
acl AMPUH src 192.168.0.0/255.255.255.0 –> asumsi ip local anda 192.168.0.0/24
http_access allow AMPUH
http_access deny all
cache_mgr ampuh@yahoo.com
visible_hostname ampuh.warnet.com
half_closed_clients off
cache_swap_high 100
cache_swap_low 80
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on

Buat direktori cache
# /usr/sbin/squid -z

Jalankan dengan
# /usr/sbin/squid -D untuk start
# /usr/sbin/squid -k shutdown untuk stop
# /usr/sbin/squid -k reconfigure untuk restart

Cek dengan
# tail -f /var/log/messages

Supaya autorun edit
# ee /etc/rc.local

if [ -x /usr/sbin/squid ]; then
echo -n ’squid’; /usr/sbin/squid -D
fi

# ee /etc/pf.conf
rdr on rl1 proto tcp from any to any port 80 -> 192.168.1.1 port 3128 —> rl1 ke local

#### untuk mendel /cache spt biasa
terus untuk delete log nya di
/var/log/squid/access.log

posted under Internet Resources, Networking


Email will not be published

Website example

Your Comment:


 
Need a logo? Try crowdSPRING!