Friday, 30 December 2011

Squid configuration



vim /etc/squid/squid.conf


acl abc url_regex -i facebook youtube songs orkut twitter grooveshark mp3skull  ---> line 590

http_access deny abc

acl mynetworks src ipaddress


acl     ip1     myip    173.205.176.6
acl     ip2     myip    173.205.176.7
acl     ip3     myip    173.205.176.8
acl     ip4     myip    173.205.176.9
acl     ip5     myip    173.205.176.10



tcp_outgoing_address    173.205.176.6   ip1
tcp_outgoing_address    173.205.176.7   ip2
tcp_outgoing_address    173.205.176.8   ip3
tcp_outgoing_address    173.205.176.9   ip4
tcp_outgoing_address    173.205.176.10  ip5






http_access allow mynetworks
http_access deny !mynetworks


service squid restart

@@@@@@@@@@for checking the uncommented part in conf file of squid@@@@@@@@
cat /etc/squid/squid.conf | grep -v "#" | less
cat /etc/squid/squid.conf | grep -v "#" | cut -d " " -f4 | less


vim /usr/share/squid/errors/English/ERR_ACCESS_DENIED -----------> for error message to be displayed


<FONT COLOR = RED >
<BLINK>
Access Denied due to new security policy. Please contact Faraji Tech for more details.
</BLINK>
</FONT>



@@@@@@@@@@@@@for high level Anonymity  @@@@@@@@@@@@@@@

forwarded_for off
header_access Allow allow all
header_access Authorization allow all
header_access Cache-Control allow all
header_access Content-Encoding allow all
header_access Content-Length allow all
header_access Content-Type allow all
header_access Date allow all
header_access Expires allow all
header_access Host allow all
header_access If-Modified-Since allow all
header_access Last-Modified allow all
header_access Location allow all
header_access Pragma allow all
header_access Accept allow all
header_access Accept-Enncoding allow all
header_access Accept-Language allow all
header_access Content-Language allow all
header_access Mime-Version allow all
header_access Cookie allow all
header_access Set_Cookie allow all
header_access Retry-After allow all
header_access Title allow all
header_access Connection allow all
header_access Proxy-Connection allow all
header_access All deny all
header_replace User-Agent anonymous

No comments:

Post a Comment

Twitter Bird Gadget