Difference between revisions of "SquidGuard: Instalasi di Ubuntu 16.04"
Jump to navigation
Jump to search
Onnowpurbo (talk | contribs) |
Onnowpurbo (talk | contribs) |
||
| (15 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
==Squid== | ==Squid== | ||
| + | sudo su | ||
| + | locale-gen id_ID.UTF-8 | ||
apt update | apt update | ||
| − | + | apt install squid3 | |
| − | |||
==Konfigurasi squid== | ==Konfigurasi squid== | ||
| + | Edit | ||
| − | vi /etc/ | + | vi /etc/squid/squid.conf |
| − | + | Tuning konfigurasi | |
| − | visible_hostname your-machines-hostname | + | |
| − | http_port 3128 | + | # visible_hostname your-machines-hostname |
| − | cache_dir ufs /var/spool/squid 1000 16 256 | + | # http_port 3128 |
| − | cache_access_log /var/log/squid/access.log | + | # cache_dir ufs /var/spool/squid 1000 16 256 |
| − | + | # cache_access_log /var/log/squid/access.log | |
| − | |||
| − | |||
| − | |||
| − | + | # ijinkan localnet | |
| − | + | acl localnet 192.168.0.0/16 | |
| + | http_access allow localnet | ||
| + | sudo service squid restart | ||
| + | /etc/init.d/squid restart | ||
| − | + | Squid bisa digunakan pada port 3128 | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | + | ==Instalasi SquidGuard== | |
| − | + | sudo su | |
| − | + | apt install squidguard | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | + | Sumber blacklist | |
| − | |||
| − | |||
| − | |||
| − | + | http://urlblacklist.com/ '''RECOMMENDED, tapi bayar:)'''' | |
| + | http://www.shallalist.de | ||
| + | Download | ||
| + | sudo su | ||
| + | cd /usr/local/src | ||
| + | wget http://www.shallalist.de/Downloads/shallalist.tar.gz | ||
| + | tar zxvf shallalist.tar.gz | ||
| + | cp -a BL/porn /var/lib/squidguard/db | ||
| + | cp -a BL/adv /var/lib/squidguard/db | ||
| + | cp -a BL/spyware /var/lib/squidguard/db | ||
| + | |||
| + | Edit squid.conf | ||
| + | |||
| + | vi /etc/squid/squid.conf | ||
| + | |||
| + | Tambahkan | ||
| + | |||
| + | url_rewrite_program /usr/bin/squidGuard | ||
| + | |||
| + | Cek | ||
| + | |||
| + | sudo squidGuard -C all | ||
| + | chown -R proxy:proxy /var/lib/squidguard/db | ||
| + | sudo ls -l /var/lib/squidguard/db* | ||
| + | |||
| + | ==Konfigurasi== | ||
| + | |||
| + | Edit squidguard.conf | ||
| + | |||
| + | sudo su | ||
| + | cp /etc/squidguard/squidGuard.conf /etc/squidguard/squidGuard.conf.asli | ||
| + | vi /etc/squidguard/squidGuard.conf | ||
| + | |||
| + | Pastikan | ||
| + | |||
| + | dbhome /var/lib/squidguard/db | ||
| + | logdir /var/log/squidguard | ||
| + | |||
| + | src bar-clients { | ||
| + | ip 192.168.0.0/16 | ||
| + | } | ||
| + | |||
| + | dest porn { | ||
| + | domainlist porn/domains | ||
| + | urllist porn/urls | ||
| + | # expressionlist porn/expressions | ||
| + | } | ||
| + | |||
| + | acl { | ||
| + | default { | ||
| + | pass local none !porn | ||
| + | redirect http://admin.foo.bar.de/cgi-bin/blocked.cgi?clientaddr=%a&clientname=%n&clientuser=%i&clientgroup=%s&targetgroup=%t&url=%u | ||
| + | } | ||
| + | } | ||
| + | |||
| + | ==Restart== | ||
| + | |||
| + | squidGuard -c /etc/squidguard/squidGuard.conf -d | ||
| + | |||
| + | 2017-06-23 10:28:56 [3410] INFO: New setting: dbhome: /var/lib/squidguard/db | ||
| + | 2017-06-23 10:28:56 [3410] INFO: New setting: logdir: /var/log/squidguard | ||
| + | 2017-06-23 10:28:56 [3410] Added User: root | ||
| + | 2017-06-23 10:28:56 [3410] Added User: foo | ||
| + | 2017-06-23 10:28:56 [3410] Added User: bar | ||
| + | 2017-06-23 10:28:56 [3410] destblock good missing active content, set inactive | ||
| + | 2017-06-23 10:28:56 [3410] destblock local missing active content, set inactive | ||
| + | 2017-06-23 10:28:56 [3410] init domainlist /var/lib/squidguard/db/porn/domains | ||
| + | 2017-06-23 10:29:23 [3410] init urllist /var/lib/squidguard/db/porn/urls | ||
| + | 2017-06-23 10:29:23 [3410] INFO: squidGuard 1.5 started (1498188536.439) | ||
| + | 2017-06-23 10:29:23 [3410] INFO: squidGuard ready for requests (1498188563.660) | ||
| + | |||
| + | /etc/init.d/squid restart | ||
| + | |||
| + | ==Test== | ||
| + | |||
| + | Test squidguard, jalankan | ||
| + | |||
| + | sudo echo "http://www.pornhub.com 10.50.55.10/- - GET" | squidGuard -c /etc/squidguard/squidGuard.conf –d | ||
| + | |||
| + | Akan terlihat, | ||
| + | |||
| + | squidGuard ready for requests | ||
| + | squidGuard stopped | ||
==Referensi== | ==Referensi== | ||
* https://www.neowin.net/forum/topic/1272584-guide-setup-squid-and-squidguard-with-ubuntu-server-14041-lts/ | * https://www.neowin.net/forum/topic/1272584-guide-setup-squid-and-squidguard-with-ubuntu-server-14041-lts/ | ||
Latest revision as of 10:30, 23 June 2017
Squid
sudo su locale-gen id_ID.UTF-8 apt update apt install squid3
Konfigurasi squid
Edit
vi /etc/squid/squid.conf
Tuning konfigurasi
# visible_hostname your-machines-hostname # http_port 3128 # cache_dir ufs /var/spool/squid 1000 16 256 # cache_access_log /var/log/squid/access.log
# ijinkan localnet acl localnet 192.168.0.0/16 http_access allow localnet
sudo service squid restart /etc/init.d/squid restart
Squid bisa digunakan pada port 3128
Instalasi SquidGuard
sudo su apt install squidguard
Sumber blacklist
http://urlblacklist.com/ RECOMMENDED, tapi bayar:)' http://www.shallalist.de
Download
sudo su cd /usr/local/src wget http://www.shallalist.de/Downloads/shallalist.tar.gz tar zxvf shallalist.tar.gz cp -a BL/porn /var/lib/squidguard/db cp -a BL/adv /var/lib/squidguard/db cp -a BL/spyware /var/lib/squidguard/db
Edit squid.conf
vi /etc/squid/squid.conf
Tambahkan
url_rewrite_program /usr/bin/squidGuard
Cek
sudo squidGuard -C all chown -R proxy:proxy /var/lib/squidguard/db sudo ls -l /var/lib/squidguard/db*
Konfigurasi
Edit squidguard.conf
sudo su cp /etc/squidguard/squidGuard.conf /etc/squidguard/squidGuard.conf.asli vi /etc/squidguard/squidGuard.conf
Pastikan
dbhome /var/lib/squidguard/db
logdir /var/log/squidguard
src bar-clients {
ip 192.168.0.0/16
}
dest porn {
domainlist porn/domains
urllist porn/urls
# expressionlist porn/expressions
}
acl {
default {
pass local none !porn
redirect http://admin.foo.bar.de/cgi-bin/blocked.cgi?clientaddr=%a&clientname=%n&clientuser=%i&clientgroup=%s&targetgroup=%t&url=%u
}
}
Restart
squidGuard -c /etc/squidguard/squidGuard.conf -d
2017-06-23 10:28:56 [3410] INFO: New setting: dbhome: /var/lib/squidguard/db 2017-06-23 10:28:56 [3410] INFO: New setting: logdir: /var/log/squidguard 2017-06-23 10:28:56 [3410] Added User: root 2017-06-23 10:28:56 [3410] Added User: foo 2017-06-23 10:28:56 [3410] Added User: bar 2017-06-23 10:28:56 [3410] destblock good missing active content, set inactive 2017-06-23 10:28:56 [3410] destblock local missing active content, set inactive 2017-06-23 10:28:56 [3410] init domainlist /var/lib/squidguard/db/porn/domains 2017-06-23 10:29:23 [3410] init urllist /var/lib/squidguard/db/porn/urls 2017-06-23 10:29:23 [3410] INFO: squidGuard 1.5 started (1498188536.439) 2017-06-23 10:29:23 [3410] INFO: squidGuard ready for requests (1498188563.660)
/etc/init.d/squid restart
Test
Test squidguard, jalankan
sudo echo "http://www.pornhub.com 10.50.55.10/- - GET" | squidGuard -c /etc/squidguard/squidGuard.conf –d
Akan terlihat,
squidGuard ready for requests squidGuard stopped