Difference between revisions of "SquidGuard: Instalasi di Ubuntu 16.04"

From OnnoWiki
Jump to navigation Jump to search
 
(11 intermediate revisions by the same user not shown)
Line 12: Line 12:
 
  vi /etc/squid/squid.conf
 
  vi /etc/squid/squid.conf
  
Konfigurasi
+
Tuning konfigurasi
 
   
 
   
 
  # visible_hostname your-machines-hostname
 
  # visible_hostname your-machines-hostname
Line 23: Line 23:
 
  http_access allow localnet
 
  http_access allow localnet
  
  sudo service restart squid3
+
  sudo service squid restart
 
  /etc/init.d/squid restart
 
  /etc/init.d/squid restart
  
Line 32: Line 32:
 
  sudo su
 
  sudo su
 
  apt install squidguard
 
  apt install squidguard
mkdir /opt/3rdparty
 
  
 
Sumber blacklist
 
Sumber blacklist
  
  http://urlblacklist.com/
+
  http://urlblacklist.com/ '''RECOMMENDED, tapi bayar:)''''
 
  http://www.shallalist.de
 
  http://www.shallalist.de
  
 
Download
 
Download
  
  sudo wget http://www.shallalist.de/Downloads/shallalist.tar.gz
+
  sudo su
  sudo tar xzf shallalist.tar.gz
+
cd /usr/local/src
  sudo cp -a /opt/3rdparty/BL/porn/var/lib/squidguard/db
+
wget http://www.shallalist.de/Downloads/shallalist.tar.gz
  sudo cp -a /opt/3rdparty/BL/adv/var/lib/squidguard/db
+
  tar zxvf shallalist.tar.gz
  sudo cp -a /opt/3rdparty/BL/spyware /var/lib/squidguard/db
+
  cp -a BL/porn /var/lib/squidguard/db
 +
  cp -a BL/adv /var/lib/squidguard/db
 +
  cp -a BL/spyware /var/lib/squidguard/db
  
Tambahkan squidGuard ke squid
+
Edit squid.conf
  
  vi /etc/squid3/squid.conf”
+
  vi /etc/squid/squid.conf
 +
 
 +
Tambahkan
  
 
  url_rewrite_program /usr/bin/squidGuard
 
  url_rewrite_program /usr/bin/squidGuard
Line 57: Line 60:
 
  sudo squidGuard -C all
 
  sudo squidGuard -C all
 
  chown -R proxy:proxy /var/lib/squidguard/db
 
  chown -R proxy:proxy /var/lib/squidguard/db
  vi /etc/squid3/squid.conf”
+
  sudo ls -l /var/lib/squidguard/db*
  
url_rewrite_program /usr/bin/squidGuard
+
==Konfigurasi==
  
 +
Edit squidguard.conf
  
Edit konfigurasi squidguard
+
sudo su
 +
cp /etc/squidguard/squidGuard.conf /etc/squidguard/squidGuard.conf.asli
 +
vi /etc/squidguard/squidGuard.conf
  
sudo cp /etc/squidguard/squidGuard.conf /etc/squidGuard.conf.bak
+
Pastikan
sudo rm /etc/squidguard/squidGuard.conf
 
sudo vi /etc/suqidgurd/squidGuard.conf
 
  
Copy and paste this,
+
  dbhome /var/lib/squidguard/db
 
+
  logdir /var/log/squidguard
#
+
# CONFIG FILE FOR SQUIDGUARD
+
src bar-clients {
#
+
        ip              192.168.0.0/16
  dbhome /usr/local/squidGuard/db
+
}
  logdir /usr/local/squidGuard/logs
+
 
  dest porn {
 
  dest porn {
  domainlist porn/domains
+
        domainlist     porn/domains
  urllist porn/urls
+
        urllist         porn/urls
  }
+
  #      expressionlist porn/expressions
  dest adv {
 
  domainlist adv/domains
 
  urllist adv/urls
 
}
 
dest spyware {
 
  domainlist spyware/domains
 
  urllist spyware/urls
 
 
  }
 
  }
 +
 
  acl {
 
  acl {
  default {
+
        default {
    pass !porn !adv !spyware all
+
                pass     local none !porn
    redirect http://localhost/block.html
+
                redirect http://admin.foo.bar.de/cgi-bin/blocked.cgi?clientaddr=%a&clientname=%n&clientuser=%i&clientgroup=%s&targetgroup=%t&url=%u
  }
+
        }
 
  }
 
  }
 +
 +
==Restart==
 +
 +
squidGuard -c /etc/squidguard/squidGuard.conf -d
 +
 +
2017-06-23 10:28:56 [3410] INFO: New setting: dbhome: /var/lib/squidguard/db
 +
2017-06-23 10:28:56 [3410] INFO: New setting: logdir: /var/log/squidguard
 +
2017-06-23 10:28:56 [3410] Added User: root
 +
2017-06-23 10:28:56 [3410] Added User: foo
 +
2017-06-23 10:28:56 [3410] Added User: bar
 +
2017-06-23 10:28:56 [3410] destblock good missing active content, set inactive
 +
2017-06-23 10:28:56 [3410] destblock local missing active content, set inactive
 +
2017-06-23 10:28:56 [3410] init domainlist /var/lib/squidguard/db/porn/domains
 +
2017-06-23 10:29:23 [3410] init urllist /var/lib/squidguard/db/porn/urls
 +
2017-06-23 10:29:23 [3410] INFO: squidGuard 1.5 started (1498188536.439)
 +
2017-06-23 10:29:23 [3410] INFO: squidGuard ready for requests (1498188563.660)
 +
 +
/etc/init.d/squid restart
 +
 +
==Test==
  
 
Test squidguard, jalankan
 
Test squidguard, jalankan
Line 98: Line 116:
 
  sudo echo "http://www.pornhub.com 10.50.55.10/- - GET" | squidGuard -c /etc/squidguard/squidGuard.conf –d
 
  sudo echo "http://www.pornhub.com 10.50.55.10/- - GET" | squidGuard -c /etc/squidguard/squidGuard.conf –d
  
You should see,  
+
Akan terlihat,
squidGuard ready for requests
 
squidGuard stopped
 
If there are errors, it will tell you.. The most likely errors you’ll run into are permission issues.. If it gives you permission issues with your database, make sure that you set the user and group named “proxy” ownership. You can tell that by “sudo ls -l /var/lib/squidguard/db*”
 
  
You can now use the Firefox browser you setup to use with your proxy server to make sure you are blocking porn and ads. For better protection, I recommend using the blacklist from, http://urlblacklist.com/
+
  squidGuard ready for requests
 +
squidGuard stopped
  
 
==Referensi==
 
==Referensi==
  
 
* https://www.neowin.net/forum/topic/1272584-guide-setup-squid-and-squidguard-with-ubuntu-server-14041-lts/
 
* https://www.neowin.net/forum/topic/1272584-guide-setup-squid-and-squidguard-with-ubuntu-server-14041-lts/

Latest revision as of 10:30, 23 June 2017

Squid

sudo su
locale-gen id_ID.UTF-8
apt update
apt install squid3

Konfigurasi squid

Edit 

vi /etc/squid/squid.conf

Tuning konfigurasi 

# visible_hostname your-machines-hostname
# http_port 3128
# cache_dir ufs /var/spool/squid 1000 16 256
# cache_access_log /var/log/squid/access.log

# ijinkan localnet
acl localnet 192.168.0.0/16
http_access allow localnet

sudo service squid restart
/etc/init.d/squid restart

Squid bisa digunakan pada port 3128

Instalasi SquidGuard

sudo su
apt install squidguard

Sumber blacklist 

http://urlblacklist.com/ RECOMMENDED, tapi bayar:)'
http://www.shallalist.de

Download 

sudo su
cd /usr/local/src
wget http://www.shallalist.de/Downloads/shallalist.tar.gz
tar zxvf shallalist.tar.gz
cp -a BL/porn /var/lib/squidguard/db
cp -a BL/adv /var/lib/squidguard/db
cp -a BL/spyware /var/lib/squidguard/db

Edit squid.conf 

vi /etc/squid/squid.conf

Tambahkan 

url_rewrite_program /usr/bin/squidGuard

Cek 

sudo squidGuard -C all
chown -R proxy:proxy /var/lib/squidguard/db
sudo ls -l /var/lib/squidguard/db*

Konfigurasi

Edit squidguard.conf 

sudo su
cp /etc/squidguard/squidGuard.conf /etc/squidguard/squidGuard.conf.asli
vi /etc/squidguard/squidGuard.conf

Pastikan 

dbhome /var/lib/squidguard/db
logdir /var/log/squidguard

src bar-clients {
        ip              192.168.0.0/16
}

dest porn {
        domainlist      porn/domains
        urllist         porn/urls
#       expressionlist  porn/expressions
}

acl {
        default {
                pass     local none !porn
                redirect http://admin.foo.bar.de/cgi-bin/blocked.cgi?clientaddr=%a&clientname=%n&clientuser=%i&clientgroup=%s&targetgroup=%t&url=%u
        }
}

Restart

squidGuard -c /etc/squidguard/squidGuard.conf -d

2017-06-23 10:28:56 [3410] INFO: New setting: dbhome: /var/lib/squidguard/db
2017-06-23 10:28:56 [3410] INFO: New setting: logdir: /var/log/squidguard
2017-06-23 10:28:56 [3410] Added User: root
2017-06-23 10:28:56 [3410] Added User: foo
2017-06-23 10:28:56 [3410] Added User: bar
2017-06-23 10:28:56 [3410] destblock good missing active content, set inactive
2017-06-23 10:28:56 [3410] destblock local missing active content, set inactive
2017-06-23 10:28:56 [3410] init domainlist /var/lib/squidguard/db/porn/domains
2017-06-23 10:29:23 [3410] init urllist /var/lib/squidguard/db/porn/urls
2017-06-23 10:29:23 [3410] INFO: squidGuard 1.5 started (1498188536.439)
2017-06-23 10:29:23 [3410] INFO: squidGuard ready for requests (1498188563.660)

/etc/init.d/squid restart

Test

Test squidguard, jalankan 

sudo echo "http://www.pornhub.com 10.50.55.10/- - GET" | squidGuard -c /etc/squidguard/squidGuard.conf –d

Akan terlihat, 

squidGuard ready for requests 
squidGuard stopped

Referensi

Retrieved from "https://onnocenter.or.id/wiki/index.php?title=SquidGuard:_Instalasi_di_Ubuntu_16.04&oldid=48886"