Professional Documents
Culture Documents
04
Se instalan los siguientes paquetes
1.-sudo apt-getupdate&& sudo apt-getinstall squid3 dhcp3-server
2.- ConfigurarSquid est en
Sudo gedit /etc/squid3/squid.conf
diskd_program /usr/lib/squid3/diskd
unlinkd_program /usr/lib/squid3/unlinkd
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern (cgi-bin|\?) 0 0% 0
refresh_pattern . 0 20% 4320
quick_abort_max 16 KB
quick_abort_pct 95
quick_abort_min 16 KB
request_header_max_size 20 KB
reply_header_max_size 20 KB
request_body_max_size 0 KB
acl manager protocache_object
acllocalhostsrc 127.0.0.1/32
aclto_localhostdst 127.0.0.0/8
acl vlan24 src 192.168.0.0/24
acl vlan26 src 192.168.100.0/24
acl vlan28 src 192.168.200.0/24
acl bloqueados url_regex "/etc/squid3/sitios_bloqueados"
aclSSL_portsport 443 563
aclSafe_portsport 80 # http
aclSafe_portsport 21 # ftp
aclSafe_portsport 443 563 1863 # https
aclSafe_portsport 70 # gopher
aclSafe_portsport 210 # wais
aclSafe_portsport 1025-65535 # unregisteredports
aclSafe_portsport 280 # http-mgmt
aclSafe_portsport 488 # gss-http
aclSafe_portsport 591 # filemaker
aclSafe_portsport 777 # multiling http
acl CONNECT method CONNECT
http_accessdeny bloqueados
http_accessallow manager localhost
http_accessdeny manager
http_accessdeny !Safe_ports
http_accessdenyCONNECT !SSL_ports
http_accessallow vlan24
http_accessallow vlan26
http_accessallow vlan28
cache_mgrwebmaster
mail_program mail
cache_efective_user proxy
cache_efective_group proxy
httpd_suppress_version_string of
visible_hostnamezenhulk
half_closed_clients of
memory_pools of
error_directory /usr/share/squid3/errors/Spanish
Guardamos
Reiniciamos Squid
3.- IPTABLES
Ingresamos a la ruta con terminal
Cd /etc/init.d/
Sudo gedit iptables_proxy.sh
#!/bin/sh
# IP del servidor SQUID
SQUID_SERVER="192.168.3.1"
# Interface conectada a Internet
INTERNET="eth0"
# Interface interna
LAN_IN="eth1"
# Puerto Squid
SQUID_PORT="3128"
Guardamos.
4.-
Configuracin de dhcp3-server