proxy's explanation

What is proxy?

Proxy is commisioned server as gate of door to access client goes to internal server extern network. 3 proxy's main functions which is Connection Sharing, Filtering and Caching


How is proxy's ways of working?

Proxy is server works as client's intermediate and extern server. Upon client tries to access sticking out (called by request) proxy server gets her pretend role as client what does merequest access to go to outer server,then then while outer server that wending to give response, proxy passes on to respond that pretend proxy those server one gives to respond.


Any kind its application?

proxy is server can walk on there are many application for example HTTP Proxy or Proxy's Web to HTTP'S protocol or Web, FTP Proxy, SMTP / is Proxy POP for enamel, NNTP proxy for Newsgroup, RealAudio / is Proxy's Real Video to multimedia streaming, IRC proxy for Relay Chat's Internet (IRC), etc.. Each will only accept,kept up or does filter on packages that resulting by accordingly service.

Its configuration example

squid's configuration example:
1. first step


# Edi Widodo PT. GOLDEN MANYARAN
# CONFIGURATION HEREUNDER HAVE IS AT REMAINED SQUID CONTO
http_port 8080 # IT given up by YOU its PORT REPLACINGS / NOT
hierarchy_stoplist cgi bin?
acl QUERY urlpath_regex cgi bin \?
no_cache deny QUERY
cache_mem 16 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size 2000 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 10 KB
cache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSF
auth_param basic children 5
auth_param basic realm Squid proxy caching server web
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern. 0 20% 4320

# FOR YOU CONNECTION LIST IN HERE
acl all src 0.0.0.0 / 0.0.0.0
acl kabehbeh src 191.168.1.0 / 24
acl udanggoreng src 192.168.1.1 192.168.1.5
acl petiskangkung src 192.168.1.16 192.168.1.41
acl gembusrebus src 192.168.1.42 192.168.1.43
acl babyboy src 192.168.1.10
acl qutebebeh src 192.168.1.111
acl berli src 192.168.1.0 / 24
acl manager proto cache_object
acl localhost src 127.0.0.1 / 255.255.255.255
acl to_localhost dst 127.0.0.0 / 8
# FOR CONNECTION TIME THAT WANTS YOU RULE IN HERE
# REMEMBER THIS TIME HAS TO CORRESPOND TO HARDWARE CLOCK
acl isukisuk time MTWHF 07:45 - 18:30
acl awanawan time MTWHF 12:00 - 13:00
acl soresore time MTWHF 15:15 - 17:00
acl sedino time MTWHF 07:00 - 19:00

acl SSL_ports port 443 563
acl Safe_ports port 80 8080 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 10000 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025 65535 # unregistered ports
acl Safe_ports port 280 # http mgmt
acl Safe_ports port 488 # gss http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

# WRITE YOU POLICY IN HERE THAT FULL / CAN PARTICULAR HOUR
http_access deny manager
http_access allow udanggoreng
http_access allow petiskangkung sedino
http_access allow gembusrebus soresore
http_access allow babyboy sedino
http_access allow qutebebeh
http_access allow manager localhost
visible_hostname proxy.co.id # suiting WITH HOSTNAME YOU
http_access deny! Safe_ports
http_access deny CONNECT! SSL_ports
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all

4. Squid's configuration was activated, don't forget to restart squid
# /etc / rc. c / init. d. / squid restarts (I Pake Mandrake, another one alone suiting)

5. edit file / proc / sys / net / ipv4 / ip_forward utilizes appetite appropriate editor. deputize for point 0 as 1
or can also you type to pass shell # echo 1> /proc / sys / net / ipv4 / ip_forward

6. Forward is package that makes towards eth0 that konek with public, no until incorrectly determination ethnya, shall eth konek's one goes to public's network that melakkukan POSTROUTING
# iptables t nat a. POSTROUTING o eth0 j. MASQUERADE

7. Don't forget ethernet addressnya's configuration that eth1 with local address, one that eth0 care of public (kalo have) kalo adsl utilizes address that corresponds to adslnya's modem. For ipaddress's configuration with ordinary editor # vi / etc / sysconfig / network scripts / ifcfg eth0

DEVICE=eth0
BOOTPROTO=static
IPADDR=192. 168.1. 254 # suitings with you network address
NETMASK=255. 255. 255. 0
NETWORK=192. 168.1. 0
BROADCAST=192. 168.1. 255
ONBOOT=yes

for also for eth1nya # vi / etc / sysconfig / network scripts / ifcfg eth1

DEVICE=eth1
BOOTPROTO=static
IPADDR=192. 168.0. 2
NETMASK=255. 255. 255. 0
NETWORK=192. 168.0. 0
BROADCAST=192. 168.0. 255
ONBOOT=yes
# Suiting care of public you or care of ADSL you

8. Ediit is file / etc / resolve.conf
nameserver 202.134.0.155 # suitings with dns provider you, This telkom

10. until in here ought to proxy you konek can go to internet. and also can function as proxy server.