Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Page 2 of 4 FirstFirst 1234 LastLast
Results 16 to 30 of 48
  1. #16
    Status
    Offline
    noldy79_04@yahoo.com's Avatar
    Newbie
    Join Date
    Jun 2010
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    #-----------------------------------#
    # Proxy Server Versi 2.7.Stable6
    # by
    # 20 May 2011
    #-----------------------------------#

    #---------------------------------------------------------------#
    # Port
    #---------------------------------------------------------------#

    http_port 3128 transparent
    icp_port 3130
    prefer_direct off

    #---------------------------------------------------------------#
    # Mengatasi Facebook Blank setelah login
    #---------------------------------------------------------------#

    server_http11 on

    #---------------------------------------------------------------#
    # Cache & Object
    #---------------------------------------------------------------#

    cache_mem 150 MB
    cache_swap_low 98
    cache_swap_high 99
    max_filedesc 8192
    maximum_object_size 128 MB
    minimum_object_size 0 KB
    maximum_object_size_in_memory 128 KB

    ipcache_size 4096
    ipcache_low 98
    ipcache_high 99
    fqdncache_size 4096
    cache_replacement_policy heap LFUDA
    memory_replacement_policy heap GDSF

    #----------------------------------------------------------------#
    # cache_dir <type> <Directory-Name> <Space in Mbytes> <Level1> <Level2> <options>
    #----------------------------------------------------------------#
    cache_dir aufs /cache 100 16 256

    #cache_dir aufs /proxy/cache1 12000 28 256
    #cache_dir aufs /proxy/cache2 12000 28 256
    #cache_dir aufs /proxy/cache3 12000 28 256
    #cache_dir aufs /proxy/cache4 12000 28 256
    #cache_dir aufs /proxy/cache5 12000 28 256

    cache_access_log /var/log/squid/access.log
    cache_log /var/log/squid/cache.log
    cache_store_log none
    pid_filename /var/run/squid.pid
    cache_swap_log /var/log/squid/swap.state
    dns_nameservers 180.131.145.145 180.131.144.144 208.67.222.222
    emulate_httpd_log off
    hosts_file /etc/hosts
    half_closed_clients off
    negative_ttl 1 minutes

    #---------------------------------------------------------------#
    # Rules: Safe Port
    #---------------------------------------------------------------#

    acl all src 0.0.0.0/0.0.0.0
    acl manager proto cache_object
    acl localhost src 127.0.0.1/255.255.255.255
    acl to_localhost dst 127.0.0.0/8
    acl SSL_ports port 443 563 873 # https snews rsync
    acl Safe_ports port 80 # http
    acl Safe_ports port 20 21 # ftp
    acl Safe_ports port 70 # gopher
    acl Safe_ports port 210 # wais
    acl Safe_ports port 1025-65535 # unregistered ports
    acl Safe_ports port 631 # cups
    acl Safe_ports port 10000 # webmin
    acl Safe_ports port 901 # SWAT
    acl Safe_ports port 280 # http-mgmt
    acl Safe_ports port 488 # gss-http
    acl Safe_ports port 591 # filemaker
    acl Safe_ports port 777 # multiling http
    acl Safe_ports port 873 # rsync
    acl Safe_ports port 110 # POP3
    acl Safe_ports port 25 # SMTP
    acl Safe_ports port 2095 2096 # webmail from cpanel
    acl Safe_ports port 2082 2083 # cpanel

    acl purge method PURGE
    acl CONNECT method CONNECT
    http_access allow manager localhost
    http_access deny manager
    http_access allow purge localhost
    http_access deny purge
    http_access deny !Safe_ports !SSL_ports
    http_access deny CONNECT !SSL_ports !Safe_ports

    #tambahan
    acl store_rewrite_list urlpath_regex \/(get_video\?|videodownload\?|videoplayback.*id)


    #---------------------------------------------------------------#
    # Refresh Pattern
    #---------------------------------------------------------------#

    #youtube's videos - tambahan
    refresh_pattern (get_video\?|videoplayback\?|videodownload\?) 5259487 99999999% 5259487 override-expire ignore-reload ignore-private negative-ttl=0

    # pictures & images
    refresh_pattern -i \.(gif|png|jpeg|jpg|bmp|tif|tiff|ico)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth ignore-private
    refresh_pattern -i \.(xml|html|htm|js|txt|css|php)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth

    #sound, video multimedia
    refresh_pattern -i \.(flv|x-flv|mov|avi|qt|mpg|mpeg|swf)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache
    refresh_pattern -i \.(wav|mp3|mp4|au|mid)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth ignore-private

    # files
    refresh_pattern -i \.(iso|deb|rpm|zip|tar|tgz|ram|rar|bin|ppt|doc)$ 10080 90% 43200 ignore-no-cache ignore-auth
    refresh_pattern -i \.(zip|gz|arj|lha|lzh)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth
    refresh_pattern -i \.(rar|tgz|tar|exe|bin)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth
    refresh_pattern -i \.(hqx|pdf|rtf|doc|swf)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth
    refresh_pattern -i \.(inc|cab|ad|txt|dll)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth

    # -- refresh pattern for specific sites -- #
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod ignore-no-cache
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 28800 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 28800 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 50% 2880 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 50% 2880 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern -i http://[^a-z\.]*onemanga\.com/? 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth

    #default option
    refresh_pattern ^ftp: 1440 20% 10080
    refresh_pattern ^gopher: 1440 0% 1440
    refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
    refresh_pattern . 0 20% 4320

    #---------------------------------------------------------------#
    # SNMP
    #---------------------------------------------------------------#

    snmp_port 3401
    acl snmpsquid snmp_community public
    snmp_access allow snmpsquid localhost
    snmp_access deny all

    #---------------------------------------------------------------#
    # ALLOWED ACCESS
    #---------------------------------------------------------------#

    acl hotspot src 10.5.50.0/24 # # Sesuaikan
    acl ProxyServer src 192.168.100.0/24 # # Sesuaikan
    acl LAN src 172.16.0.0/24
    http_access allow hotspot
    http_access allow ProxyServer
    http_access allow LAN
    http_access allow localhost
    http_access deny all
    http_reply_access allow all
    icp_access allow hotspot
    icp_access allow ProxyServer
    #icp_access allow PulsaServer
    icp_access allow localhost
    icp_access deny all
    always_direct deny all

    #---------------------------------------------------------------#
    # Cache CGI & Administrative
    #---------------------------------------------------------------#

    cache_mgr admin@nadasumbang.com
    visible_hostname proxy.nadasumbang.com
    cache_effective_user proxy
    cache_effective_group proxy
    coredump_dir /var/spool/squid
    shutdown_lifetime 10 seconds


    ini bos squid.conf nya... gimana apa nya yang perlu di edit?


    ini interface nya bos:
    # This file describes the network interfaces available on your system
    # and how to activate them. For more information, see interfaces(5).

    # The loopback network interface
    auto lo
    iface lo inet loopback

    # The primary network interface
    auto eth0
    iface eth0 inet static
    address 192.168.100.100
    netmask 255.255.255.0
    network 192.168.100.0
    broadcast 192.168.100.255
    gateway 192.168.100.1
    # dns-* options are implemented by the resolvconf package, if installed
    dns-nameservers 192.168.100.1


    apa udh bener bos?ada yang perlu diedit yang mana?
    Last edited by noldy79_04@yahoo.com; 28-03-2012 at 11:19.

  2. #17
    Status
    Offline
    yohanexz's Avatar
    Member Super Senior
    Join Date
    Sep 2010
    Location
    Rawamangun, Jakarta
    Posts
    613
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    1
    Feedback Score
    0
    cache_dir aufs /cache 100 16 256
    kecil amat.
    cache_dir aufs /proxy/cache1 12000 28 256
    tu ada yang gede cache_dirnya. kenapa di ####

    refresh_pattern semuanya ga usah dipake juga. bikin nnormal dulu. jika udah jalan bagus baru mainin refresh_pattern nya. Click here to enlarge

    NI contoh SQUID.CONF sederhana dulu yaaa. versi LUSCA

    # ACCESS CONTROLS
    # -----------------------------------------------------------------------------
    acl all src all
    acl manager proto cache_object
    acl localhost src 127.0.0.1/32
    acl localhost src 192.168.100.0/24
    acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
    acl dynamic urlpath_regex cgi-bin \?
    acl SSL_ports port 443 563 873
    acl Safe_ports port 80 21 443 70 210 1025-65535 280 488 591 777 631 873 901
    acl purge method PURGE
    acl CONNECT method CONNECT
    http_access allow manager localhost
    http_access deny manager
    http_access allow purge localhost
    http_access deny purge
    http_access deny !Safe_ports
    http_access deny CONNECT !SSL_ports
    http_access allow localhost
    http_access deny all

    # NETWORK OPTIONS
    # -----------------------------------------------------------------------------
    http_port 3128 transparent
    zph_mode tos
    zph_local 0x30
    zph_parent 0
    zph_option 136
    cache_effective_user proxy
    cache_effective_group proxy

    # MEMORY CACHE OPTIONS
    # -----------------------------------------------------------------------------
    cache_mem 8 MB
    maximum_object_size_in_memory 32 KB
    memory_replacement_policy heap GDSF

    # DISK CACHE OPTIONS
    # -----------------------------------------------------------------------------
    cache_replacement_policy heap LFUDA
    cache_dir aufs /cache-1 9000 18 256
    minimum_object_size 0 KB
    maximum_object_size 128000 KB
    cache_swap_low 90
    cache_swap_high 95

    # LOGFILE OPTIONS
    # -----------------------------------------------------------------------------
    error_directory /usr/share/lusca/errors/English
    icon_directory /usr/share/lusca/icons
    pid_filename /var/run/squid.pid
    mime_table /etc/squid/mime.conf
    access_log /var/log/squid/access.log
    cache_log /var/log/squid/cache.log
    cache_store_log none
    logfile_rotate 2

    # OPTIONS FOR TUNING THE CACHE
    # -----------------------------------------------------------------------------
    refresh_pattern ^ftp: 10080 95% 43200 override-lastmod reload-into-ims store-stale
    refresh_pattern ^gopher: 440 0% 1440
    refresh_pattern . 0 50% 4320 override-lastmod reload-into-ims store-stale

    #-----------------------------------------------------------------------------
    quick_abort_min 0 KB
    quick_abort_max 0 KB
    quick_abort_pct 98
    store_avg_object_size 13 KB
    negative_ttl 0 minute
    positive_dns_ttl 6 hours
    negative_dns_ttl 0 minute

    # HTTP OPTIONS
    # -----------------------------------------------------------------------------
    vary_ignore_expire on
    server_http11 on
    half_closed_clients off
    shutdown_lifetime 10 seconds

    # ADMINISTRATIVE PARAMETERS
    # -----------------------------------------------------------------------------
    cache_mgr webmaster
    visible_hostname NET-kuuuu_BREEE

    # ICP OPTIONS
    # -----------------------------------------------------------------------------
    icp_port 0
    log_icp_queries off
    client_db on
    buffered_logs on
    log_fqdn off
    icp_hit_stale on
    query_icmp on

    # DNS OPTIONS
    # -----------------------------------------------------------------------------
    dns_nameservers 203.130.208.18
    ipcache_size 16384
    ipcache_low 90
    ipcache_high 95
    fqdncache_size 16384

    # MISCELLANEOUS
    # -----------------------------------------------------------------------------
    memory_pools off
    forwarded_for on
    reload_into_ims on
    offline_mode off
    coredump_dir /var/spool/squid
    pipeline_prefetch on
    oyaa. tambahin NAT nya di miktotik
    /ip firewall nat
    add action=dst-nat chain=dstnat comment="Redirect EXTERNAL PROXY" disabled=no dst-port=80,8080,3128 in-interface=Lan \
    protocol=tcp src-address=!192.168.100.100 to-addresses=192.168.100.100 to-ports=3128
    Last edited by yohanexz; 28-03-2012 at 11:35.

  3. #18
    Status
    Offline
    dhopack's Avatar
    Forum Guru
    Join Date
    Dec 2010
    Location
    KUDUS
    Posts
    1,919
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    jika nat di mikrotik sudah bener dan kyae squid.conf diatas juga tidak ada mslh(apa saya yg kurang teliti ya?) cb dicopas dimari hasil dari squid access.log dan cache.log nya,

  4. #19
    Status
    Offline
    noldy79_04@yahoo.com's Avatar
    Newbie
    Join Date
    Jun 2010
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    apa ip lokal nya diatas ada yang perlu diedit ?squid access.log dan cache.log nya tempatnya di mana? bingung ne..

    ohh ketemu acsess.log nya ini bos:
    1332893332.818 0 175.45.25.79 TCP_DENIED/403 1470 GET - NONE/- text/html
    1332901506.288 0 188.233.8.63 TCP_DENIED/403 1466 POST - NONE/- text/html

    1332804362.874 0 192.168.88.111 TCP_DENIED/403 1470 GET - NONE/- text/html
    1332804788.325 0 192.168.88.111 TCP_DENIED/403 1470 GET - NONE/- text/html
    1332804830.061 0 192.168.88.111 TCP_DENIED/403 1470 GET - NONE/- text/html
    1332804878.052 0 192.168.88.111 TCP_DENIED/403 1470 GET - NONE/- text/html
    1332804950.719 0 192.168.88.111 TCP_DENIED/403 1470 GET - NONE/- text/html
    1332805021.170 0 192.168.88.111 TCP_DENIED/403 1470 GET - NONE/- text/html
    1332820579.303 0 192.168.88.20 TCP_DENIED/403 1456 GET - NONE/- text/html
    1332820620.281 0 192.168.88.20 TCP_DENIED/403 1456 GET - NONE/- text/html
    1332820648.464 0 192.168.88.20 TCP_DENIED/403 1456 GET - NONE/- text/html
    1332820704.524 0 192.168.88.20 TCP_DENIED/403 1456 GET - NONE/- text/html
    1332842232.477 110 192.168.100.1 TCP_MISS/304 467 GET - DIRECT/68.232.44.119 -
    1332842232.997 853 192.168.100.1 TCP_MISS/304 373 GET - DIRECT/212.7.196.107 -
    1332842234.076 3997 192.168.100.1 TCP_MISS/200 46512 GET - DIRECT/203.106.85.41 image/png
    1332842235.565 0 192.168.88.1 TCP_DENIED/403 1468 GET - NONE/- text/html
    1332842235.572 0 192.168.88.1 TCP_DENIED/403 1462 GET - NONE/- text/html
    1332842235.596 5616 192.168.100.1 TCP_MISS/200 53565 GET - DIRECT/203.106.50.16 image/png
    1332842235.629 294 192.168.100.1 TCP_MISS/200 4899 GET - DIRECT/203.106.85.41 image/gif
    1332842236.480 6892 192.168.100.1 TCP_MISS/200 58714 GET - DIRECT/203.106.50.16 image/png
    1332842237.302 501 192.168.100.1 TCP_MISS/200 8075 GET - DIRECT/203.106.85.41 image/jpeg
    1332842240.000 7486 192.168.100.1 TCP_MISS/200 58408 GET - DIRECT/203.106.85.41 image/png
    1332842241.840 11617 192.168.100.1 TCP_MISS/200 43460 GET - DIRECT/203.106.50.16 image/gif

    cache.log nya:
    2012/03/27 06:25:04| storeDirWriteCleanLogs: Starting...
    2012/03/27 06:25:04| Finished. Wrote 374 entries.
    2012/03/27 06:25:04| Took 0.0 seconds (1360000.0 entries/sec).
    2012/03/27 06:25:04| logfileRotate: /var/log/squid/access.log
    2012/03/27 06:25:04| logfileRotate (stdio): /var/log/squid/access.log
    2012/03/27 17:44:52| Preparing for shutdown after 1224 requests
    2012/03/27 17:44:52| Waiting 10 seconds for active connections to finish
    2012/03/27 17:44:52| FD 13 Closing HTTP connection
    2012/03/27 17:46:18| Starting Squid Cache version 2.7.STABLE9 for i686-pc-linux-gnu...
    2012/03/27 17:46:18| Process ID 719
    2012/03/27 17:46:18| With 8192 file descriptors available
    2012/03/27 17:46:18| Using epoll for the IO loop
    2012/03/27 17:46:18| Performing DNS Tests...
    2012/03/27 17:46:18| Successful DNS name lookup tests...
    2012/03/27 17:46:18| DNS Socket created at 0.0.0.0, port 46609, FD 6
    2012/03/27 17:46:18| Adding nameserver 180.131.145.145 from squid.conf
    2012/03/27 17:46:18| Adding nameserver 180.131.144.144 from squid.conf
    2012/03/27 17:46:18| Adding nameserver 208.67.222.222 from squid.conf
    2012/03/27 17:46:18| logfileOpen: opening log /var/log/squid/access.log
    2012/03/27 17:46:18| Swap maxSize 102400 + 153600 KB, estimated 19692 objects
    2012/03/27 17:46:18| Target number of buckets: 984
    2012/03/27 17:46:18| Using 8192 Store buckets
    2012/03/27 17:46:18| Max Mem size: 153600 KB
    2012/03/27 17:46:18| Max Swap size: 102400 KB
    2012/03/27 17:46:18| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
    2012/03/27 17:46:18| Store logging disabled
    2012/03/27 17:46:18| Rebuilding storage in /cache (DIRTY)
    2012/03/27 17:46:18| Using Least Load store dir selection
    2012/03/27 17:46:18| Set Current Directory to /var/spool/squid
    2012/03/27 17:46:18| Loaded Icons.
    2012/03/27 17:46:23| Accepting transparently proxied HTTP connections at 0.0.0.0, port 3128, FD 13.
    2012/03/27 17:46:23| Accepting ICP messages at 0.0.0.0, port 3130, FD 14.
    2012/03/27 17:46:23| Accepting HTCP messages on port 4827, FD 15.
    2012/03/27 17:46:23| Accepting SNMP messages on port 3401, FD 16.
    2012/03/27 17:46:23| WCCP Disabled.
    2012/03/27 17:46:23| Ready to serve requests.
    2012/03/27 17:46:23| Done reading /cache swaplog (920 entries)
    2012/03/27 17:46:23| Finished rebuilding storage from disk.
    2012/03/27 17:46:23| 915 Entries scanned
    2012/03/27 17:46:23| 0 Invalid entries.
    2012/03/27 17:46:23| 0 With invalid flags.
    2012/03/27 17:46:23| 915 Objects loaded.
    2012/03/27 17:46:23| 0 Objects expired.
    2012/03/27 17:46:23| 1 Objects cancelled.
    2012/03/27 17:46:23| 0 Duplicate URLs purged.
    2012/03/27 17:46:23| 0 Swapfile clashes avoided.
    2012/03/27 17:46:23| Took 5.1 seconds ( 178.3 objects/sec).
    2012/03/27 17:46:23| Beginning Validation Procedure
    2012/03/27 17:46:23| Completed Validation Procedure
    2012/03/27 17:46:23| Validated 914 Entries
    2012/03/27 17:46:23| store_swap_size = 14472k
    2012/03/27 17:46:26| storeLateRelease: released 0 objects
    2012/03/28 00:27:30| clientNatLookup: NF getsockopt(SO_ORIGINAL_DST) failed: (92) Protocol not available
    2012/03/28 00:27:30| clientTryParseRequest: FD 12 (66.0.10.113:35782) Invalid Request


    gimana?
    Last edited by noldy79_04@yahoo.com; 28-03-2012 at 11:58.

  5. #20
    Status
    Offline
    zdienos's Avatar
    Forum Guru
    Join Date
    Feb 2010
    Location
    ~/makasar
    Posts
    1,252
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ---salah lihat---
    Last edited by zdienos; 28-03-2012 at 12:16. Reason: hapus...

  6. #21
    Status
    Offline
    noldy79_04@yahoo.com's Avatar
    Newbie
    Join Date
    Jun 2010
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ini bos squid.conf nya

    #-----------------------------------#
    # Proxy Server Versi 2.7.Stable6
    # by
    # 20 May 2011
    #-----------------------------------#

    #---------------------------------------------------------------#
    # Port
    #---------------------------------------------------------------#

    http_port 3128 transparent
    icp_port 3130
    prefer_direct off

    #---------------------------------------------------------------#
    # Mengatasi Facebook Blank setelah login
    #---------------------------------------------------------------#

    server_http11 on

    #---------------------------------------------------------------#
    # Cache & Object
    #---------------------------------------------------------------#

    cache_mem 150 MB
    cache_swap_low 98
    cache_swap_high 99
    max_filedesc 8192
    maximum_object_size 128 MB
    minimum_object_size 0 KB
    maximum_object_size_in_memory 128 KB

    ipcache_size 4096
    ipcache_low 98
    ipcache_high 99
    fqdncache_size 4096
    cache_replacement_policy heap LFUDA
    memory_replacement_policy heap GDSF

    #----------------------------------------------------------------#
    # cache_dir <type> <Directory-Name> <Space in Mbytes> <Level1> <Level2> <options>
    #----------------------------------------------------------------#
    cache_dir aufs /cache 100 16 256

    #cache_dir aufs /proxy/cache1 12000 28 256
    #cache_dir aufs /proxy/cache2 12000 28 256
    #cache_dir aufs /proxy/cache3 12000 28 256
    #cache_dir aufs /proxy/cache4 12000 28 256
    #cache_dir aufs /proxy/cache5 12000 28 256

    cache_access_log /var/log/squid/access.log
    cache_log /var/log/squid/cache.log
    cache_store_log none
    pid_filename /var/run/squid.pid
    cache_swap_log /var/log/squid/swap.state
    dns_nameservers 180.131.145.145 180.131.144.144 208.67.222.222
    emulate_httpd_log off
    hosts_file /etc/hosts
    half_closed_clients off
    negative_ttl 1 minutes

    #---------------------------------------------------------------#
    # Rules: Safe Port
    #---------------------------------------------------------------#

    acl all src 0.0.0.0/0.0.0.0
    acl manager proto cache_object
    acl localhost src 127.0.0.1/255.255.255.255
    acl to_localhost dst 127.0.0.0/8
    acl SSL_ports port 443 563 873 # https snews rsync
    acl Safe_ports port 80 # http
    acl Safe_ports port 20 21 # ftp
    acl Safe_ports port 70 # gopher
    acl Safe_ports port 210 # wais
    acl Safe_ports port 1025-65535 # unregistered ports
    acl Safe_ports port 631 # cups
    acl Safe_ports port 10000 # webmin
    acl Safe_ports port 901 # SWAT
    acl Safe_ports port 280 # http-mgmt
    acl Safe_ports port 488 # gss-http
    acl Safe_ports port 591 # filemaker
    acl Safe_ports port 777 # multiling http
    acl Safe_ports port 873 # rsync
    acl Safe_ports port 110 # POP3
    acl Safe_ports port 25 # SMTP
    acl Safe_ports port 2095 2096 # webmail from cpanel
    acl Safe_ports port 2082 2083 # cpanel

    acl purge method PURGE
    acl CONNECT method CONNECT
    http_access allow manager localhost
    http_access deny manager
    http_access allow purge localhost
    http_access deny purge
    http_access deny !Safe_ports !SSL_ports
    http_access deny CONNECT !SSL_ports !Safe_ports

    #tambahan
    acl store_rewrite_list urlpath_regex \/(get_video\?|videodownload\?|videoplayback.*id)


    #---------------------------------------------------------------#
    # Refresh Pattern
    #---------------------------------------------------------------#

    #youtube's videos - tambahan
    refresh_pattern (get_video\?|videoplayback\?|videodownload\?) 5259487 99999999% 5259487 override-expire ignore-reload ignore-private negative-ttl=0

    # pictures & images
    refresh_pattern -i \.(gif|png|jpeg|jpg|bmp|tif|tiff|ico)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth ignore-private
    refresh_pattern -i \.(xml|html|htm|js|txt|css|php)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth

    #sound, video multimedia
    refresh_pattern -i \.(flv|x-flv|mov|avi|qt|mpg|mpeg|swf)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache
    refresh_pattern -i \.(wav|mp3|mp4|au|mid)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth ignore-private

    # files
    refresh_pattern -i \.(iso|deb|rpm|zip|tar|tgz|ram|rar|bin|ppt|doc)$ 10080 90% 43200 ignore-no-cache ignore-auth
    refresh_pattern -i \.(zip|gz|arj|lha|lzh)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth
    refresh_pattern -i \.(rar|tgz|tar|exe|bin)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth
    refresh_pattern -i \.(hqx|pdf|rtf|doc|swf)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth
    refresh_pattern -i \.(inc|cab|ad|txt|dll)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth

    # -- refresh pattern for specific sites -- #
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod ignore-no-cache
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 28800 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 28800 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 50% 2880 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 50% 2880 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern -i http://[^a-z\.]*onemanga\.com/? 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
    refresh_pattern ^ 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth

    #default option
    refresh_pattern ^ftp: 1440 20% 10080
    refresh_pattern ^gopher: 1440 0% 1440
    refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
    refresh_pattern . 0 20% 4320

    #---------------------------------------------------------------#
    # SNMP
    #---------------------------------------------------------------#

    snmp_port 3401
    acl snmpsquid snmp_community public
    snmp_access allow snmpsquid localhost
    snmp_access deny all

    #---------------------------------------------------------------#
    # ALLOWED ACCESS
    #---------------------------------------------------------------#

    acl hotspot src 10.5.50.0/24 # # Sesuaikan
    acl ProxyServer src 192.168.100.0/24 # # Sesuaikan
    acl LAN src 172.16.0.0/24
    http_access allow hotspot
    http_access allow ProxyServer
    http_access allow LAN
    http_access allow localhost
    http_access deny all
    http_reply_access allow all
    icp_access allow hotspot
    icp_access allow ProxyServer
    #icp_access allow PulsaServer
    icp_access allow localhost
    icp_access deny all
    always_direct deny all

    #---------------------------------------------------------------#
    # Cache CGI & Administrative
    #---------------------------------------------------------------#

    cache_mgr admin@nadasumbang.com
    visible_hostname proxy.nadasumbang.com
    cache_effective_user proxy
    cache_effective_group proxy
    coredump_dir /var/spool/squid
    shutdown_lifetime 10 seconds
    logfile_rotate 14


    access list yang harud disesuaikan yang mana bos?
    topologi ku: speedy : 192.168.1.10
    LAN : 192.168.88.251
    Proxy : 192.168.100.1
    squid proxy ubuntu: 192.168.100.100

    barusan aku buat nat nya kayak bos yohanez malah error bos.
    trus rule nat nya gimana jika topologinya kayak gitu?
    trus yang perlu di edit yang mana squid.conf nya?















    gimana bos?
    Last edited by noldy79_04@yahoo.com; 28-03-2012 at 12:39.

  7. #22
    Status
    Offline
    dhopack's Avatar
    Forum Guru
    Join Date
    Dec 2010
    Location
    KUDUS
    Posts
    1,919
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    @ TS

    sebaiknya pake tag code supaya rapi tulisannya,

    tentang error yang ini
    2012/03/28 00:27:30| clientNatLookup: NF getsockopt(SO_ORIGINAL_DST) failed: (92) Protocol not available
    2012/03/28 00:27:30| clientTryParseRequest: FD 12 (66.0.10.113:35782) Invalid Request
    mungkin ini ada obatnya,
    Click here to enlarge Originally Posted by sum14rdi Click here to enlarge
    @^
    klo pake ubuntu tinggal
    Code:
    #modprobe ip_conntrack
    kemudian tambahin di /etc/modules
    ip_conntrack
    caranya:
    Code:
    #nano /etc/modules
    tambahin ip_conntrack

    ==CMIIW==Click here to enlarge
    Click here to enlarge Originally Posted by iamspa Click here to enlarge
    clientNatLookup: NF getsockopt(SO_ORIGINAL_DST) failed: (92) Protocol not available <<<<< SOLVED......

    tambahkan di baris paling bawah di /etc/modules

    ip_conntrack

    lalu reboot biar lebih enak.....

    padahal kalo gak salah udah di kasih tau om SIBER ......
    ternyata ini toh gunanya....
    makasih buanyak agan siber....

  8. #23
    Status
    Offline
    yohanexz's Avatar
    Member Super Senior
    Join Date
    Sep 2010
    Location
    Rawamangun, Jakarta
    Posts
    613
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    1
    Feedback Score
    0
    ACl ini yang ini yaaa
    # ACCESS CONTROLS
    # -----------------------------------------------------------------------------
    acl all src all
    acl manager proto cache_object
    acl localhost src 127.0.0.1/32
    acl localhost src 192.168.100.0/24
    acl localhost src 192.168.88.0/24

    acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
    acl dynamic urlpath_regex cgi-bin \?
    acl SSL_ports port 443 563 873
    acl Safe_ports port 80 21 443 70 210 1025-65535 280 488 591 777 631 873 901
    acl purge method PURGE
    acl CONNECT method CONNECT
    http_access allow manager localhost
    http_access deny manager
    http_access allow purge localhost
    http_access deny purge
    http_access deny !Safe_ports
    http_access deny CONNECT !SSL_ports
    http_access allow localhost
    http_access deny all
    jelas yaaaa?

  9. #24
    Status
    Offline
    noldy79_04@yahoo.com's Avatar
    Newbie
    Join Date
    Jun 2010
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    trus nat nya itu di tulis satu persatu bos yohanez. kalo aku copas, perintah nat nya gak mau.
    trus perintah di mangle nya gimana? sapa perintah di filter rules nya?

  10. #25
    Status
    Offline
    yohanexz's Avatar
    Member Super Senior
    Join Date
    Sep 2010
    Location
    Rawamangun, Jakarta
    Posts
    613
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    1
    Feedback Score
    0
    Click here to enlarge Originally Posted by noldy79_04@yahoo.com Click here to enlarge
    trus nat nya itu di tulis satu persatu bos yohanez. kalo aku copas, perintah nat nya gak mau.
    trus perintah di mangle nya gimana? sapa perintah di filter rules nya?
    Nama interface lan itu penulisannya: LAN atau Lan. kalo di copy langsung ga mau yaa di bikin manual NAT nya (tinggal pilih dan isi sesuai nat diatas ). itu artinya port 80,8080 semua di buang ke ip 192.168.100.100 dengan port 3128. ip proxy kalo ke mangel biarin aja dulu setting yang lain. nat nya sampe bener

  11. #26
    Status
    Offline
    noldy79_04@yahoo.com's Avatar
    Newbie
    Join Date
    Jun 2010
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    iya interface nya aku tulis : LAN, yang port 80, aku taruh di in - interface : LAN , kok malah error bos internetnya?
    tapi yang port 8080 kutaruh di interface : LAN bisa konek internetnya
    gimana bos apa yang salah ya?

    udh bisa bos port yang 80 udh bisa konek.. tapi nat masquerade nya aku taruh di out-interface : speedy-out
    tapi proxy nya juga mau belom jalan e bos.. interface proxy nya masih 0bps gak mau jalan
    gimana bos?

    ---------- Post added at 13:11 ---------- Previous post was at 12:35 ----------

    ternyata yang prot 80 emang error bos tadi ip nya 192.168.100.100 lupa gak aku kasih tanda !, setelah kukasih tanda ! emang bener error, gimana bos?
    tolongin ane bos
    Last edited by noldy79_04@yahoo.com; 28-03-2012 at 13:45.

  12. #27
    Status
    Offline
    dhopack's Avatar
    Forum Guru
    Join Date
    Dec 2010
    Location
    KUDUS
    Posts
    1,919
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by noldy79_04@yahoo.com Click here to enlarge
    trus nat nya itu di tulis satu persatu bos yohanez. kalo aku copas, perintah nat nya gak mau.
    trus perintah di mangle nya gimana? sapa perintah di filter rules nya?
    weww bisa panjang masalahnya,
    ada baiknya maen2 dulu ke sub forum lalu dilanjutkan ke baru ke

    Click here to enlarge

  13. #28
    Status
    Offline
    noldy79_04@yahoo.com's Avatar
    Newbie
    Join Date
    Jun 2010
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    hikz , gak dapat solusinya bos kalo gitu skarang..hehhe

  14. #29
    Status
    Offline
    yohanexz's Avatar
    Member Super Senior
    Join Date
    Sep 2010
    Location
    Rawamangun, Jakarta
    Posts
    613
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    1
    Feedback Score
    0
    Copy Semua settingan yang ada di NAT mikrotik mu kemari. padahal itu udah jelas banget.


    dan proxy mu di cek udah jalan belum. caranya ketik di terminalnya
    netstat -pln |grep squid
    kalo squid mu udah jalan keluarnya akan seperti ini
    tcp 0 0 0.0.0.0:3128 0.0.0.0:* LISTEN
    kalo belum jalan pastikan squid proxy mu dulu diberesin yaaa. dengan squid.conf juga dns. resolv.conf, gateway nya juga mungkin salah.
    Last edited by yohanexz; 28-03-2012 at 14:48.

  15. #30
    Status
    Offline
    noldy79_04@yahoo.com's Avatar
    Newbie
    Join Date
    Jun 2010
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    netstat -pln |grep squid
    root@proxy-surya:~# squid .d 1 -D
    2012/03/28 13:48:29| ACL name 'localnet' not defined!
    FATAL: Bungled squid.conf line 170: miss_access allow localnet
    Squid Cache (Version 2.7.STABLE9): Terminated abnormally.


    kok ada tulisannya kayak gini bos?

    ---------- Post added at 13:56 ---------- Previous post was at 13:50 ----------

    FATAL: cache_dir /cache-1: (2) No such file or directory
    Squid Cache (Version 2.7.STABLE9): Terminated abnormally.
    CPU Usage: 0.000 seconds = 0.000 user + 0.000 sys
    Maximum Resident Size: 5680 KB
    Page faults with physical i/o: 0
    Aborted (core dumped)

    ada tulisannya gitu bos
    squid.conf nya gak jalan

    ---------- Post added at 13:58 ---------- Previous post was at 13:56 ----------

    trus squid.conf aku ganti yang lama ada tulisannya gini bos:
    root@proxy-surya:~# squid .d 1 -D
    2012/03/28 13:57:56| WARNING cache_mem is larger than total disk cache space!
    2012/03/28 13:57:56| Squid is already running! Process ID 935

    gimana bos?

 

 
Page 2 of 4 FirstFirst 1234 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Replies: 6
    Last Post: 14-09-2011, 12:28
  2. Replies: 78
    Last Post: 26-10-2010, 11:48
  3. web proxy internal kok miss terus ya...
    By Raden_otonk in forum Beginner Basics
    Replies: 2
    Last Post: 03-05-2010, 23:33

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •