Tutorial Server Ubuntu
Tutorial Server Ubuntu
auto eth0
iface eth0 inet static
address 192.168.1.10
netmask 255.255.255.0
gateway 192.168.1.1
network 192.168.1.0
broadcast 192.168.1.255
dns-nameservers 192.168.1.1
auto eth1
iface eth1 inet static
address 192.168.50.1
netmask 255.255.255.0
network 192.168.50.0
broadcast 192.168.50.255
------------------------------------------------------------------------7. # /etc/init.d/networking restart
Konfigurasi routing (iptables)
8. # nano /etc/sysctl.conf
Cari kata berikut, hilangkan tanda pagar didepannya
------------------------------------------------------------------------net.ipv4.ip_forward=1
9. # sudo sysctl -w net.ipv4.ip_forward=1
1
ADMINISTRATIVE PARAMETERS
# =====================
#
cache_mgr namaanda@smklaniang.sch.id
cache_effective_user proxy
cache_effective_group proxy
httpd_suppress_version_string on
visible_hostname www.smklaniang.sch.id
cari (ctrl+w) acl localhost. kalo sudah dapat, tambahkan acl lan src 192.168.50.0 diantara
acl local host src dan acl to_localhost dst. setelah itu. di bawahnya acl lan src, tambahkan
acl blokir dstdomain .facebook.com .youtube.com
jadinya:
acl local host src 127.0.0.1/32
acl lan src 192.168.50.0/24
acl blokir dstdomain .facebook.com .youtube.com
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
cari kebawah-bawah lagi. sampai dapat
# http_access deny all
# only allow cachemgr access from localhost
http_access deny blokir
http_access allow manager localhost
http_access allow lan
http_access deny manager
Kemudian save (ctrl+o) baru exit (ctrl+x)
16. #squid3 -z (kalau sudah ada keterangan running artinya berhasil)
17. #squid3 -k reconfigure
18. #/etc/init.d/squid3 restart
19. #sudo /sbin/iptables -t nat I PREROUTING i eth1 p tcp m tcp --dport 80 j
REDIRECT --to-ports 3128
20. #sudo /sbin/iptables -t nat I PREROUTING i eth1 p udp m udp --dport 80 j
REDIRECT --to-ports 3128
21. #nano /etc/rc.local
------------------------------------------------------------------------sudo /sbin/iptables -P FORWARD ACCEPT
sudo /sbin/iptables --table nat -A POSTROUTING -o eth0 -j MASQUERADE
sudo /sbin/iptables -t nat I PREROUTING i eth1 p tcp m tcp --dport 80 j
REDIRECT --to-ports 3128
sudo /sbin/iptables -t nat I PREROUTING i eth1 p udp m udp --dport 80 j
REDIRECT --to-ports 3128
exit 0
Kemudian save (ctrl+o baru exit (ctrl+x)
22. Cek konfigurasi squid
#tail f /var/log/squid3/cache.log
Kemudian cek koneksi ke Client dengan menghubungkan satu atau beberapa komputer (PC)
IP Address 192.168.50.2 - 254
Netmask 255.255.255.0
Gateway 192.168.50.1
Prefered dns server 192.168.50.1