<ask> Download tidak ter cache di squid...

**nitaufan** · 28-07-2010, 11:17

Para suhu dan master mikrotik dan squid....

saya ada problem pada saat download ke dua kali nya dengan file yang sama tetap mengambil dari internet berarti si squid tdk men cache file yang sudah saya download sebelum nya...mohon para master2 mikrotik dan squid sudi kira nya memecahkan dan membantu newbie yang baru blajar mikrotik dan squid...

Setting squid.conf

Code:

#-----------------------------------#
# Proxy Server Versi 2.7.Stable7
#-----------------------------------#

#---------------------------------------------------------------#
# Port
#---------------------------------------------------------------#

http_port 3128 transparent
icp_port 3130
prefer_direct off

#---------------------------------------------------------------#
# Mengatasi Facebook Blank setelah login
#---------------------------------------------------------------#

server_http11 on

#---------------------------------------------------------------#
# Cache & Object
#---------------------------------------------------------------#

cache_mem 8 MB
cache_swap_low 98
cache_swap_high 99
max_filedesc 8192
maximum_object_size 128 MB
minimum_object_size 0 KB
maximum_object_size_in_memory 4 bytes

ipcache_size 4096
ipcache_low 98
ipcache_high 99
fqdncache_size 4096
cache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSF

#----------------------------------------------------------------#
# cache_dir <type> <Directory-Name> <Space in Mbytes> <Level1> <Level2> <options>
#----------------------------------------------------------------#

cache_dir aufs /home/proxy1 7000 16 256
cache_dir aufs /home/proxy2 7000 16 256
cache_dir aufs /home/proxy3 7000 16 256

cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log none
pid_filename /var/run/squid.pid
cache_swap_log /var/log/squid/swap.state
dns_nameservers /etc/resolv.conf
emulate_httpd_log off
hosts_file /etc/hosts
half_closed_clients off
negative_ttl 1 minutes

#---------------------------------------------------------------#
# Rules: Safe Port
#---------------------------------------------------------------#

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl localnet src 192.168.0.0/255.255.255.0
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 873 # https snews rsync
acl Safe_ports port 80 # http
acl Safe_ports port 20 21 # ftp
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 631 # cups
acl Safe_ports port 10000 # webmin
acl Safe_ports port 901 # SWAT
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 873 # rsync
acl Safe_ports port 110 # POP3
acl Safe_ports port 25 # SMTP
acl Safe_ports port 2095 2096 # webmail from cpanel
acl Safe_ports port 2082 2083 # cpanel

acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports !SSL_ports
http_access deny CONNECT !SSL_ports !Safe_ports

#---------------------------------------------------------------#
# Refresh Pattern
#---------------------------------------------------------------#

refresh_pattern ^ftp: 		  1440  20%  10080
refresh_pattern ^gopher: 	  1440  0%   1440
refresh_pattern ^http:          720   90%  432000

refresh_pattern -i \.(gif|png|jpg|jpeg|ico)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(iso|avi|wav|mp3|mp4|mpeg|mpg|swf|flv|x-flv)$ 43200 90% 432000 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(deb|rpm|exe|ram|bin|pdf|ppt|doc|tiff)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(zip|gz|arj|lha|lzh|tar|tgz|cab|rar)$ 10080 95% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(html|htm|css|js|php|asp|aspx|cgi) 1440 40% 40320

refresh_pattern ^http://*.friendster.com/.* 720 100% 4320
refresh_pattern ^http://*.facebook.com/.* 720 100% 4320
refresh_pattern ^http://*.twitter.com/.* 720 100% 4320
refresh_pattern ^http://*.rf-online.*/.* 720 100% 4320
refresh_pattern ^http://*.lineage2.*/.* 720 100% 4320
refresh_pattern ^http://*.ayodance.*/.* 720 100% 4320
refresh_pattern ^http://*.indomp3z.*/.* 720 100% 4320
refresh_pattern ^http://*.gemscool.*/.* 720 100% 4320
refresh_pattern ^http://*.forummikrotik.*/.* 720 100% 4320
refresh_pattern ^http://*.*indowebster.*/.* 720 100% 4320
refresh_pattern ^http://mail.yahoo.com/.* 720 100% 4320
refresh_pattern ^http://*.yahoo.*/.* 720 100% 4320
refresh_pattern ^http://*.yimg.*/.* 720 100% 4320
refresh_pattern ^http://*.ytimg.*/.* 720 100% 4320
refresh_pattern ^http://*.liveconnector.*/.* 720 100% 4320
refresh_pattern ^http://*.windowsupdate.com/.*\.(cab|exe) 4320 100% 43200
refresh_pattern ^http://*.download.microsoft.com/.*\.(cab|exe) 4320 100% 43200
refresh_pattern ^http://*.google.*/.* 720 100% 4320
refresh_pattern ^http://*.youtube.*/.* 720 100% 4320
refresh_pattern ^http://*.myspace.*/.* 720 100% 4320
refresh_pattern ^http://*.telkomspeedy.com/.* 720 100% 4320
refresh_pattern ^http://*.kaskus.*/.* 720 100% 4320
refresh_pattern ^http://*.akamai.*/.* 720 100% 4320
refresh_pattern ^http://*.hotmail.*/.* 720 100% 4320
refresh_pattern ^http://*.wikipedia.*/.* 720 100% 4320
refresh_pattern ^http://wiki.*.*/.* 720 100% 4320
refresh_pattern ^http://*.multiply.*/.* 720 100% 4320
refresh_pattern ^http://*.jobsdb.*/.* 720 100% 4320
refresh_pattern ^http://*.karir.*/.* 720 100% 4320
refresh_pattern ^http://mail.plasa.com/.* 720 100% 4320
refresh_pattern ^http://*.detik.*/.* 60 20% 360
refresh_pattern ^http://*.detikinet.*/.* 60 20% 360
refresh_pattern ^http://*.detikhot.*/.* 60 20% 360
refresh_pattern ^http://*.detiportal.*/.* 60 100% 360
refresh_pattern ^http://*.kompas.*/.* 60 20% 360
refresh_pattern ^http://*.okezone.*/.* 60 20% 360
refresh_pattern ^http://*.trans7.*/.* 720 100% 4320
refresh_pattern ^http://*.rcti.*/.* 720 100% 4320
refresh_pattern ^http://*.indosiar.*/.* 720 100% 4320
refresh_pattern ^http://*.metrotvnews.*/.* 720 100% 4320
refresh_pattern ^http://*.transtv.*/.* 720 100% 4320
refresh_pattern ^http://*.kapanlagi.*/.* 720 100% 4320
refresh_pattern ^http://*.ebay.*/.* 720 100% 4320
refresh_pattern ^http://*.grisoft.com/.*\.(bin|exe) 4320 100% 43200
refresh_pattern ^http://*.ads.adbrite.com/.* 720 100% 4320
refresh_pattern ^http://*.adserving.*/.* 720 100% 4320
refresh_pattern ^http://*.ad.yieldmanager.*/.* 720 100% 4320
refresh_pattern ^http://*.imageshack.*/.* 100800 100% 4320
refresh_pattern ^http://*.photobucket.*/.* 100800 100% 4320
refresh_pattern ^ftp: 10080 95% 241920 reload-into-ims override-lastmod
refresh_pattern . 180 95% 120960 reload-into-ims override-lastmod

refresh_pattern . 0 20% 4320

#---------------------------------------------------------------#
# SNMP
#---------------------------------------------------------------#

snmp_port 3401
acl snmpsquid snmp_community public
snmp_access allow snmpsquid localhost
snmp_access deny all

#---------------------------------------------------------------#
# ALLOWED ACCESS
#---------------------------------------------------------------#

acl proxyku src 192.168.10.0/24 
http_access allow proxyku
http_access allow localhost
http_access allow localnet
http_access deny all
http_reply_access allow all
icp_access allow proxyku
icp_access allow localhost
icp_access deny all
always_direct deny all

#---------------------------------------------------------------#
# Cache CGI & Administrative
#---------------------------------------------------------------#

cache_mgr nitaufan201204@yahoo.com
visible_hostname dns.proxyku.net
cache_effective_user proxy
cache_effective_group proxy
coredump_dir /var/spool/squid
shutdown_lifetime 10 seconds
logfile_rotate 14

#-----------------------------------------------------------------#
#tcp_outgoing_tos 0x30 localnet
#-----------------------------------------------------------------#

zph_mode tos
zph_local 0x30
zph_parent 0
zph_option 136

setting mangle di mikrotik

Code:

 0   ;;; SQUID PROXY HIT
     chain=forward action=mark-connection new-connection-mark=HIT passthrough=yes protocol=tcp in-interface=Linux Proxy Server out-interface=local 
     src-port=3128 dscp=12 

 1   chain=forward action=mark-packet new-packet-mark=Proxy-paket passthrough=no connection-mark=HIT 

 2   ;;; Limit Download
     chain=forward action=mark-connection new-connection-mark=Download passthrough=yes protocol=tcp in-interface=Linux Proxy Server out-interface=local 
     packet-mark=!Proxy-paket connection-mark=!HIT connection-bytes=262146-4294967295 

 3   chain=forward action=mark-packet new-packet-mark=Download_Paket passthrough=no 

 4   ;;; Rule Pisah Bandwidth Browsing dan Game
     chain=prerouting action=mark-connection new-connection-mark=koneksi iix passthrough=yes dst-address-list=iix in-interface=local 

 5   chain=prerouting action=mark-packet new-packet-mark=paket iix passthrough=no connection-mark=koneksi iix 

 6   chain=output action=mark-packet new-packet-mark=paket iix passthrough=no connection-mark=koneksi iix 

 7   chain=prerouting action=mark-packet new-packet-mark=paket int passthrough=no 

 8   chain=output action=mark-packet new-packet-mark=paket int passthrough=no

Mohon bantuannya untuk newbie Click here to enlarge

**karaeng** · 28-07-2010, 11:45

Originally Posted by nitaufan

Para suhu dan master mikrotik dan squid....

saya ada problem pada saat download ke dua kali nya dengan file yang sama tetap mengambil dari internet berarti si squid tdk men cache file yang sudah saya download sebelum nya...mohon para master2 mikrotik dan squid sudi kira nya memecahkan dan membantu newbie yang baru blajar mikrotik dan squid...

Setting squid.conf

Code:

#-----------------------------------#
# Proxy Server Versi 2.7.Stable7
#-----------------------------------#

#---------------------------------------------------------------#
# Port
#---------------------------------------------------------------#

http_port 3128 transparent
icp_port 3130
prefer_direct off

#---------------------------------------------------------------#
# Mengatasi Facebook Blank setelah login
#---------------------------------------------------------------#

server_http11 on

#---------------------------------------------------------------#
# Cache & Object
#---------------------------------------------------------------#

cache_mem 8 MB
cache_swap_low 98
cache_swap_high 99
max_filedesc 8192
maximum_object_size 128 MB
minimum_object_size 0 KB
maximum_object_size_in_memory 4 bytes

ipcache_size 4096
ipcache_low 98
ipcache_high 99
fqdncache_size 4096
cache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSF

#----------------------------------------------------------------#
# cache_dir <type> <Directory-Name> <Space in Mbytes> <Level1> <Level2> <options>
#----------------------------------------------------------------#

cache_dir aufs /home/proxy1 7000 16 256
cache_dir aufs /home/proxy2 7000 16 256
cache_dir aufs /home/proxy3 7000 16 256

cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log none
pid_filename /var/run/squid.pid
cache_swap_log /var/log/squid/swap.state
dns_nameservers /etc/resolv.conf
emulate_httpd_log off
hosts_file /etc/hosts
half_closed_clients off
negative_ttl 1 minutes

#---------------------------------------------------------------#
# Rules: Safe Port
#---------------------------------------------------------------#

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl localnet src 192.168.0.0/255.255.255.0
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 873 # https snews rsync
acl Safe_ports port 80 # http
acl Safe_ports port 20 21 # ftp
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 631 # cups
acl Safe_ports port 10000 # webmin
acl Safe_ports port 901 # SWAT
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 873 # rsync
acl Safe_ports port 110 # POP3
acl Safe_ports port 25 # SMTP
acl Safe_ports port 2095 2096 # webmail from cpanel
acl Safe_ports port 2082 2083 # cpanel

acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports !SSL_ports
http_access deny CONNECT !SSL_ports !Safe_ports

#---------------------------------------------------------------#
# Refresh Pattern
#---------------------------------------------------------------#

refresh_pattern ^ftp: 		  1440  20%  10080
refresh_pattern ^gopher: 	  1440  0%   1440
refresh_pattern ^http:          720   90%  432000

refresh_pattern -i \.(gif|png|jpg|jpeg|ico)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(iso|avi|wav|mp3|mp4|mpeg|mpg|swf|flv|x-flv)$ 43200 90% 432000 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(deb|rpm|exe|ram|bin|pdf|ppt|doc|tiff)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(zip|gz|arj|lha|lzh|tar|tgz|cab|rar)$ 10080 95% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(html|htm|css|js|php|asp|aspx|cgi) 1440 40% 40320

refresh_pattern ^http://*.friendster.com/.* 720 100% 4320
refresh_pattern ^http://*.facebook.com/.* 720 100% 4320
refresh_pattern ^http://*.twitter.com/.* 720 100% 4320
refresh_pattern ^http://*.rf-online.*/.* 720 100% 4320
refresh_pattern ^http://*.lineage2.*/.* 720 100% 4320
refresh_pattern ^http://*.ayodance.*/.* 720 100% 4320
refresh_pattern ^http://*.indomp3z.*/.* 720 100% 4320
refresh_pattern ^http://*.gemscool.*/.* 720 100% 4320
refresh_pattern ^http://*.forummikrotik.*/.* 720 100% 4320
refresh_pattern ^http://*.*indowebster.*/.* 720 100% 4320
refresh_pattern ^http://mail.yahoo.com/.* 720 100% 4320
refresh_pattern ^http://*.yahoo.*/.* 720 100% 4320
refresh_pattern ^http://*.yimg.*/.* 720 100% 4320
refresh_pattern ^http://*.ytimg.*/.* 720 100% 4320
refresh_pattern ^http://*.liveconnector.*/.* 720 100% 4320
refresh_pattern ^http://*.windowsupdate.com/.*\.(cab|exe) 4320 100% 43200
refresh_pattern ^http://*.download.microsoft.com/.*\.(cab|exe) 4320 100% 43200
refresh_pattern ^http://*.google.*/.* 720 100% 4320
refresh_pattern ^http://*.youtube.*/.* 720 100% 4320
refresh_pattern ^http://*.myspace.*/.* 720 100% 4320
refresh_pattern ^http://*.telkomspeedy.com/.* 720 100% 4320
refresh_pattern ^http://*.kaskus.*/.* 720 100% 4320
refresh_pattern ^http://*.akamai.*/.* 720 100% 4320
refresh_pattern ^http://*.hotmail.*/.* 720 100% 4320
refresh_pattern ^http://*.wikipedia.*/.* 720 100% 4320
refresh_pattern ^http://wiki.*.*/.* 720 100% 4320
refresh_pattern ^http://*.multiply.*/.* 720 100% 4320
refresh_pattern ^http://*.jobsdb.*/.* 720 100% 4320
refresh_pattern ^http://*.karir.*/.* 720 100% 4320
refresh_pattern ^http://mail.plasa.com/.* 720 100% 4320
refresh_pattern ^http://*.detik.*/.* 60 20% 360
refresh_pattern ^http://*.detikinet.*/.* 60 20% 360
refresh_pattern ^http://*.detikhot.*/.* 60 20% 360
refresh_pattern ^http://*.detiportal.*/.* 60 100% 360
refresh_pattern ^http://*.kompas.*/.* 60 20% 360
refresh_pattern ^http://*.okezone.*/.* 60 20% 360
refresh_pattern ^http://*.trans7.*/.* 720 100% 4320
refresh_pattern ^http://*.rcti.*/.* 720 100% 4320
refresh_pattern ^http://*.indosiar.*/.* 720 100% 4320
refresh_pattern ^http://*.metrotvnews.*/.* 720 100% 4320
refresh_pattern ^http://*.transtv.*/.* 720 100% 4320
refresh_pattern ^http://*.kapanlagi.*/.* 720 100% 4320
refresh_pattern ^http://*.ebay.*/.* 720 100% 4320
refresh_pattern ^http://*.grisoft.com/.*\.(bin|exe) 4320 100% 43200
refresh_pattern ^http://*.ads.adbrite.com/.* 720 100% 4320
refresh_pattern ^http://*.adserving.*/.* 720 100% 4320
refresh_pattern ^http://*.ad.yieldmanager.*/.* 720 100% 4320
refresh_pattern ^http://*.imageshack.*/.* 100800 100% 4320
refresh_pattern ^http://*.photobucket.*/.* 100800 100% 4320
refresh_pattern ^ftp: 10080 95% 241920 reload-into-ims override-lastmod
refresh_pattern . 180 95% 120960 reload-into-ims override-lastmod

refresh_pattern . 0 20% 4320

#---------------------------------------------------------------#
# SNMP
#---------------------------------------------------------------#

snmp_port 3401
acl snmpsquid snmp_community public
snmp_access allow snmpsquid localhost
snmp_access deny all

#---------------------------------------------------------------#
# ALLOWED ACCESS
#---------------------------------------------------------------#

acl proxyku src 192.168.10.0/24 
http_access allow proxyku
http_access allow localhost
http_access allow localnet
http_access deny all
http_reply_access allow all
icp_access allow proxyku
icp_access allow localhost
icp_access deny all
always_direct deny all

#---------------------------------------------------------------#
# Cache CGI & Administrative
#---------------------------------------------------------------#

cache_mgr nitaufan201204@yahoo.com
visible_hostname dns.proxyku.net
cache_effective_user proxy
cache_effective_group proxy
coredump_dir /var/spool/squid
shutdown_lifetime 10 seconds
logfile_rotate 14

#-----------------------------------------------------------------#
#tcp_outgoing_tos 0x30 localnet
#-----------------------------------------------------------------#

zph_mode tos
zph_local 0x30
zph_parent 0
zph_option 136

setting mangle di mikrotik

Code:

 0   ;;; SQUID PROXY HIT
     chain=forward action=mark-connection new-connection-mark=HIT passthrough=yes protocol=tcp in-interface=Linux Proxy Server out-interface=local 
     src-port=3128 dscp=12 

 1   chain=forward action=mark-packet new-packet-mark=Proxy-paket passthrough=no connection-mark=HIT 

 2   ;;; Limit Download
     chain=forward action=mark-connection new-connection-mark=Download passthrough=yes protocol=tcp in-interface=Linux Proxy Server out-interface=local 
     packet-mark=!Proxy-paket connection-mark=!HIT connection-bytes=262146-4294967295 

 3   chain=forward action=mark-packet new-packet-mark=Download_Paket passthrough=no 

 4   ;;; Rule Pisah Bandwidth Browsing dan Game
     chain=prerouting action=mark-connection new-connection-mark=koneksi iix passthrough=yes dst-address-list=iix in-interface=local 

 5   chain=prerouting action=mark-packet new-packet-mark=paket iix passthrough=no connection-mark=koneksi iix 

 6   chain=output action=mark-packet new-packet-mark=paket iix passthrough=no connection-mark=koneksi iix 

 7   chain=prerouting action=mark-packet new-packet-mark=paket int passthrough=no 

 8   chain=output action=mark-packet new-packet-mark=paket int passthrough=no

Mohon bantuannya untuk newbie Click here to enlarge

squid yg di install apa udah di pacth?
besar file yg di download brapa ?

**nitaufan** · 28-07-2010, 13:55

Originally Posted by karaeng

squid yg di install apa udah di pacth?
besar file yg di download brapa ?

1.squid ane install pake ikutin tutorial dari sini

2. ane download mp3 dari indowebster kira2 10mb an

mohon solusinya... Click here to enlarge

**karaeng** · 28-07-2010, 14:09

Originally Posted by nitaufan

1.squid ane install pake ikutin tutorial dari sini

2. ane download mp3 dari indowebster kira2 10mb an

mohon solusinya... Click here to enlarge

Qos nya make versi brapa?
skalian Topologi jaringannya gan...

coba squid.conf

Code:

refresh_pattern -i \.(gif|png|jpg|jpeg|ico)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(iso|avi|wav|mp3|mp4|mpeg|mpg|swf|flv|x-flv)$ 43200 90% 432000 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(deb|rpm|exe|ram|bin|pdf|ppt|doc|tiff)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(zip|gz|arj|lha|lzh|tar|tgz|cab|rar)$ 10080 95% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(html|htm|css|js|php|asp|aspx|cgi) 1440 40% 40320

refresh_pattern ^http://*.friendster.com/.* 720 100% 4320
refresh_pattern ^http://*.facebook.com/.* 720 100% 4320
refresh_pattern ^http://*.twitter.com/.* 720 100% 4320
refresh_pattern ^http://*.rf-online.*/.* 720 100% 4320
refresh_pattern ^http://*.lineage2.*/.* 720 100% 4320
refresh_pattern ^http://*.ayodance.*/.* 720 100% 4320
refresh_pattern ^http://*.indomp3z.*/.* 720 100% 4320
refresh_pattern ^http://*.gemscool.*/.* 720 100% 4320
refresh_pattern ^http://*.forummikrotik.*/.* 720 100% 4320
refresh_pattern ^http://*.*indowebster.*/.* 720 100% 4320
refresh_pattern ^http://mail.yahoo.com/.* 720 100% 4320
refresh_pattern ^http://*.yahoo.*/.* 720 100% 4320
refresh_pattern ^http://*.yimg.*/.* 720 100% 4320
refresh_pattern ^http://*.ytimg.*/.* 720 100% 4320
refresh_pattern ^http://*.liveconnector.*/.* 720 100% 4320
refresh_pattern ^http://*.windowsupdate.com/.*\.(cab|exe) 4320 100% 43200
refresh_pattern ^http://*.download.microsoft.com/.*\.(cab|exe) 4320 100% 43200
refresh_pattern ^http://*.google.*/.* 720 100% 4320
refresh_pattern ^http://*.youtube.*/.* 720 100% 4320
refresh_pattern ^http://*.myspace.*/.* 720 100% 4320
refresh_pattern ^http://*.telkomspeedy.com/.* 720 100% 4320
refresh_pattern ^http://*.kaskus.*/.* 720 100% 4320
refresh_pattern ^http://*.akamai.*/.* 720 100% 4320
refresh_pattern ^http://*.hotmail.*/.* 720 100% 4320
refresh_pattern ^http://*.wikipedia.*/.* 720 100% 4320
refresh_pattern ^http://wiki.*.*/.* 720 100% 4320
refresh_pattern ^http://*.multiply.*/.* 720 100% 4320
refresh_pattern ^http://*.jobsdb.*/.* 720 100% 4320
refresh_pattern ^http://*.karir.*/.* 720 100% 4320
refresh_pattern ^http://mail.plasa.com/.* 720 100% 4320
refresh_pattern ^http://*.detik.*/.* 60 20% 360
refresh_pattern ^http://*.detikinet.*/.* 60 20% 360
refresh_pattern ^http://*.detikhot.*/.* 60 20% 360
refresh_pattern ^http://*.detiportal.*/.* 60 100% 360
refresh_pattern ^http://*.kompas.*/.* 60 20% 360
refresh_pattern ^http://*.okezone.*/.* 60 20% 360
refresh_pattern ^http://*.trans7.*/.* 720 100% 4320
refresh_pattern ^http://*.rcti.*/.* 720 100% 4320
refresh_pattern ^http://*.indosiar.*/.* 720 100% 4320
refresh_pattern ^http://*.metrotvnews.*/.* 720 100% 4320
refresh_pattern ^http://*.transtv.*/.* 720 100% 4320
refresh_pattern ^http://*.kapanlagi.*/.* 720 100% 4320
refresh_pattern ^http://*.ebay.*/.* 720 100% 4320
refresh_pattern ^http://*.grisoft.com/.*\.(bin|exe) 4320 100% 43200
refresh_pattern ^http://*.ads.adbrite.com/.* 720 100% 4320
refresh_pattern ^http://*.adserving.*/.* 720 100% 4320
refresh_pattern ^http://*.ad.yieldmanager.*/.* 720 100% 4320
refresh_pattern ^http://*.imageshack.*/.* 100800 100% 4320
refresh_pattern ^http://*.photobucket.*/.* 100800 100% 4320
refresh_pattern ^ftp: 		  1440  20%  10080
refresh_pattern ^gopher: 	  1440  0%   1440
refresh_pattern . 180 95% 120960 reload-into-ims override-lastmod

refresh_pattern . 0 20% 4320

untuk refresh patternnya

**nitaufan** · 28-07-2010, 15:42

Originally Posted by karaeng

Qos nya make versi brapa?
skalian Topologi jaringannya gan...

coba squid.conf

Code:

refresh_pattern -i \.(gif|png|jpg|jpeg|ico)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(iso|avi|wav|mp3|mp4|mpeg|mpg|swf|flv|x-flv)$ 43200 90% 432000 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(deb|rpm|exe|ram|bin|pdf|ppt|doc|tiff)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(zip|gz|arj|lha|lzh|tar|tgz|cab|rar)$ 10080 95% 43200 override-expire ignore-no-cache ignore-private
refresh_pattern -i \.(html|htm|css|js|php|asp|aspx|cgi) 1440 40% 40320

refresh_pattern ^http://*.friendster.com/.* 720 100% 4320
refresh_pattern ^http://*.facebook.com/.* 720 100% 4320
refresh_pattern ^http://*.twitter.com/.* 720 100% 4320
refresh_pattern ^http://*.rf-online.*/.* 720 100% 4320
refresh_pattern ^http://*.lineage2.*/.* 720 100% 4320
refresh_pattern ^http://*.ayodance.*/.* 720 100% 4320
refresh_pattern ^http://*.indomp3z.*/.* 720 100% 4320
refresh_pattern ^http://*.gemscool.*/.* 720 100% 4320
refresh_pattern ^http://*.forummikrotik.*/.* 720 100% 4320
refresh_pattern ^http://*.*indowebster.*/.* 720 100% 4320
refresh_pattern ^http://mail.yahoo.com/.* 720 100% 4320
refresh_pattern ^http://*.yahoo.*/.* 720 100% 4320
refresh_pattern ^http://*.yimg.*/.* 720 100% 4320
refresh_pattern ^http://*.ytimg.*/.* 720 100% 4320
refresh_pattern ^http://*.liveconnector.*/.* 720 100% 4320
refresh_pattern ^http://*.windowsupdate.com/.*\.(cab|exe) 4320 100% 43200
refresh_pattern ^http://*.download.microsoft.com/.*\.(cab|exe) 4320 100% 43200
refresh_pattern ^http://*.google.*/.* 720 100% 4320
refresh_pattern ^http://*.youtube.*/.* 720 100% 4320
refresh_pattern ^http://*.myspace.*/.* 720 100% 4320
refresh_pattern ^http://*.telkomspeedy.com/.* 720 100% 4320
refresh_pattern ^http://*.kaskus.*/.* 720 100% 4320
refresh_pattern ^http://*.akamai.*/.* 720 100% 4320
refresh_pattern ^http://*.hotmail.*/.* 720 100% 4320
refresh_pattern ^http://*.wikipedia.*/.* 720 100% 4320
refresh_pattern ^http://wiki.*.*/.* 720 100% 4320
refresh_pattern ^http://*.multiply.*/.* 720 100% 4320
refresh_pattern ^http://*.jobsdb.*/.* 720 100% 4320
refresh_pattern ^http://*.karir.*/.* 720 100% 4320
refresh_pattern ^http://mail.plasa.com/.* 720 100% 4320
refresh_pattern ^http://*.detik.*/.* 60 20% 360
refresh_pattern ^http://*.detikinet.*/.* 60 20% 360
refresh_pattern ^http://*.detikhot.*/.* 60 20% 360
refresh_pattern ^http://*.detiportal.*/.* 60 100% 360
refresh_pattern ^http://*.kompas.*/.* 60 20% 360
refresh_pattern ^http://*.okezone.*/.* 60 20% 360
refresh_pattern ^http://*.trans7.*/.* 720 100% 4320
refresh_pattern ^http://*.rcti.*/.* 720 100% 4320
refresh_pattern ^http://*.indosiar.*/.* 720 100% 4320
refresh_pattern ^http://*.metrotvnews.*/.* 720 100% 4320
refresh_pattern ^http://*.transtv.*/.* 720 100% 4320
refresh_pattern ^http://*.kapanlagi.*/.* 720 100% 4320
refresh_pattern ^http://*.ebay.*/.* 720 100% 4320
refresh_pattern ^http://*.grisoft.com/.*\.(bin|exe) 4320 100% 43200
refresh_pattern ^http://*.ads.adbrite.com/.* 720 100% 4320
refresh_pattern ^http://*.adserving.*/.* 720 100% 4320
refresh_pattern ^http://*.ad.yieldmanager.*/.* 720 100% 4320
refresh_pattern ^http://*.imageshack.*/.* 100800 100% 4320
refresh_pattern ^http://*.photobucket.*/.* 100800 100% 4320
refresh_pattern ^ftp: 		  1440  20%  10080
refresh_pattern ^gopher: 	  1440  0%   1440
refresh_pattern . 180 95% 120960 reload-into-ims override-lastmod

refresh_pattern . 0 20% 4320

untuk refresh patternnya

1. QOS pake versi 3.30

2. Topologi
Topologi (Squid Sejajar dengan Mikrotik)

Code:

 Speedy1 (Browsing,Download,chatting,dll)           
                   |                          
                   |                   Speedy2 (Khusus game online saja)
                   |                        |                                      
                   |--------------------MIKROTIK------------Squid Proxy
                                            |
                                            |
                                            |
                                         Switch
                                            |
                                            |
                                  Client1,Client2, dsb

Mohon bimbingan dan solusinya para master2 mikrotik Click here to enlarge

**karaeng** · 28-07-2010, 17:14

Originally Posted by nitaufan

1. QOS pake versi 3.30

2. Topologi
Topologi (Squid Sejajar dengan Mikrotik)

Code:

 Speedy1 (Browsing,Download,chatting,dll)           
                   |                          
                   |                   Speedy2 (Khusus game online saja)
                   |                        |                                      
                   |--------------------MIKROTIK------------Squid Proxy
                                            |
                                            |
                                            |
                                         Switch
                                            |
                                            |
                                  Client1,Client2, dsb

Mohon bimbingan dan solusinya para master2 mikrotik Click here to enlarge

jadi...
buatin NATnya gan (transparant proxy)
trus IP Tables di proxy nga usah di aktifin krena Proxy sjajar mikrotik..

**nitaufan** · 28-07-2010, 20:24

Originally Posted by karaeng

jadi...
buatin NATnya gan (transparant proxy)
trus IP Tables di proxy nga usah di aktifin krena Proxy sjajar mikrotik..

1. Nat untuk Proxy sudah di buat...

Code:

[admin@MikroTik] /ip firewall nat> print  
Flags: X - disabled, I - invalid, D - dynamic 
 0   ;;; REDIRECT TO SQUID PROXY
     chain=srcnat action=masquerade src-address=192.168.10.2 out-interface=game 

 1   chain=srcnat action=masquerade src-address=192.168.10.2 out-interface=browsing 

 2 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.0/24 in-interface=local dst-port=80 

 3 X ;;; Ikbal
     chain=srcnat action=masquerade src-address=192.168.0.2 out-interface=game 

 4 X chain=srcnat action=masquerade src-address=192.168.0.2 out-interface=browsing 

 5 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.2 in-interface=local dst-port=80 

 6 X chain=dstnat action=redirect to-ports=8080 protocol=tcp src-address=192.168.0.2 in-interface=local dst-port=80 

 7   ;;; TLWN321
     chain=srcnat action=masquerade src-address=192.168.0.3 out-interface=game 

 8   chain=srcnat action=masquerade src-address=192.168.0.3 out-interface=browsing 

 9 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.3 in-interface=local dst-port=80 

10 X ;;; Ayu
     chain=srcnat action=masquerade src-address=192.168.0.4 out-interface=game 

11 X chain=srcnat action=masquerade src-address=192.168.0.4 out-interface=browsing 

12 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.4 in-interface=local dst-port=80 

13   ;;; lutfi
     chain=srcnat action=masquerade src-address=192.168.0.6 out-interface=game 

14   chain=srcnat action=masquerade src-address=192.168.0.6 out-interface=browsing 

15   chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.6 in-interface=local dst-port=80 

16 X ;;; Ibnu
     chain=srcnat action=masquerade src-address=192.168.0.10 out-interface=game 

17 X chain=srcnat action=masquerade src-address=192.168.0.10 out-interface=browsing 

18 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.10 in-interface=local dst-port=80

2. IP Tables juga saya aktifkan...

so intinya gimana?????? Gimana cara non aktifkan IP Tables di squid....

Thanks

**tawa** · 28-07-2010, 23:42

ijin nyimak sapa tahu dapat kasus beginian Click here to enlarge

**silverfall** · 29-07-2010, 13:50

Originally Posted by nitaufan

1. Nat untuk Proxy sudah di buat...

Code:

[admin@MikroTik] /ip firewall nat> print  
Flags: X - disabled, I - invalid, D - dynamic 
 0   ;;; REDIRECT TO SQUID PROXY
     chain=srcnat action=masquerade src-address=192.168.10.2 out-interface=game 

 1   chain=srcnat action=masquerade src-address=192.168.10.2 out-interface=browsing 

 2 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.0/24 in-interface=local dst-port=80 

 3 X ;;; Ikbal
     chain=srcnat action=masquerade src-address=192.168.0.2 out-interface=game 

 4 X chain=srcnat action=masquerade src-address=192.168.0.2 out-interface=browsing 

 5 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.2 in-interface=local dst-port=80 

 6 X chain=dstnat action=redirect to-ports=8080 protocol=tcp src-address=192.168.0.2 in-interface=local dst-port=80 

 7   ;;; TLWN321
     chain=srcnat action=masquerade src-address=192.168.0.3 out-interface=game 

 8   chain=srcnat action=masquerade src-address=192.168.0.3 out-interface=browsing 

 9 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.3 in-interface=local dst-port=80 

10 X ;;; Ayu
     chain=srcnat action=masquerade src-address=192.168.0.4 out-interface=game 

11 X chain=srcnat action=masquerade src-address=192.168.0.4 out-interface=browsing 

12 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.4 in-interface=local dst-port=80 

13   ;;; lutfi
     chain=srcnat action=masquerade src-address=192.168.0.6 out-interface=game 

14   chain=srcnat action=masquerade src-address=192.168.0.6 out-interface=browsing 

15   chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.6 in-interface=local dst-port=80 

16 X ;;; Ibnu
     chain=srcnat action=masquerade src-address=192.168.0.10 out-interface=game 

17 X chain=srcnat action=masquerade src-address=192.168.0.10 out-interface=browsing 

18 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.10 in-interface=local dst-port=80

2. IP Tables juga saya aktifkan...

so intinya gimana?????? Gimana cara non aktifkan IP Tables di squid....

Thanks

coba di console ketik "iptables -f"
*tanpa petik

**oktama** · 29-07-2010, 17:54

Originally Posted by nitaufan

2. IP Tables juga saya aktifkan...

so intinya gimana?????? Gimana cara non aktifkan IP Tables di squid....

Thanks

iptables --flush atau iptables -F

kl bisa sih mending dipastekan iptablesnya listnya biar kelihatan apakah iptables-nya ada blocking port yang ke proxy, kl ngga ada ya biarin aja Click here to enlarge

**nitaufan** · 29-07-2010, 19:42

Originally Posted by oktama

iptables --flush atau iptables -F

kl bisa sih mending dipastekan iptablesnya listnya biar kelihatan apakah iptables-nya ada blocking port yang ke proxy, kl ngga ada ya biarin aja Click here to enlarge

ini ip tables yang saya gunakan

iptables -t nat -I PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128
iptables -t nat -I PREROUTING -i eth0 -p udp -m udp --dport 80 -j REDIRECT --to-ports 3128

**oktama** · 29-07-2010, 23:39

utk chain input ngga ada yang diblock-kan? kl ngga ada ngga usah rubah2 lagi tinggal pake, karena iptables -t nat -I PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128 hanya membelokkan port tcp 80 ke port 3128, sedangkan router anda sudah mengerjakan tugas ini jadi ngga perlu lagi dibelokkan, mau dihapus atau ngga, tidak akan menggangu Click here to enlarge

**nitaufan** · 30-07-2010, 08:50

Originally Posted by oktama

utk chain input ngga ada yang diblock-kan? kl ngga ada ngga usah rubah2 lagi tinggal pake, karena iptables -t nat -I PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128 hanya membelokkan port tcp 80 ke port 3128, sedangkan router anda sudah mengerjakan tugas ini jadi ngga perlu lagi dibelokkan, mau dihapus atau ngga, tidak akan menggangu Click here to enlarge

ga ada yg saya block...ooo gitu ok deh thanks buat bro OKTAMA.... Click here to enlarge

trus untuk masalah cache gimana bro OKTAMA...soalnya saya sudah download tp tdk tercache untuk yang kedua kalinya.... Click here to enlarge

**karaeng** · 30-07-2010, 08:53

Code:

 2 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=192.168.0.0/24 in-interface=local dst-port=80

apakah yg diatas ini yg dimaksud rule transparant proxy...
kayaknya disini permasalahannya gan...!!!

coba gunakan rule ini gan :

Code:

 2 X chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128 protocol=tcp src-address=!192.168.0.0/16 in-interface=local dst-port=80,3128,8080

untuk in-interfacenya, gunakan interface lokal

mudah2an bisa membantu....

**oktama** · 30-07-2010, 16:25

Originally Posted by nitaufan

ga ada yg saya block...ooo gitu ok deh thanks buat bro OKTAMA.... Click here to enlarge

trus untuk masalah cache gimana bro OKTAMA...soalnya saya sudah download tp tdk tercache untuk yang kedua kalinya.... Click here to enlarge

itu tinggal masalah pengaturan di-refresh_pattern ajah, silahkan search dah banyak bgt koq yg bahas tentang isi refresh pattern, saran saya jangan terlalu aggresif menggunakan refresh pattern karena bisa mengakibatkan web tidak terupdate Click here to enlarge

juga jika ingin mencache dynamic content bisa coba super proxy punya om siber, hasil lumayan juga koq Click here to enlarge

Thread: <ask> Download tidak ter cache di squid...

LinkBack

Thread Tools

<ask> Download tidak ter cache di squid...

The Following User Says Thank You to nitaufan For This Useful Post:

Thread Information

Users Browsing this Thread

Similar Threads

[Req] Squid buat nge-cache YouTube

Parameter Delay Pools Di Dalam Squid-cache

Squid cache jadi sharing login sama

[ask] cache download bytes d queque simple

Object/file hasil download ga masuk cache

Posting Permissions