begini friend, saya buat proxy server dan saya buat trasnparant proxy, tapi kok jadinya client kok bisa tembus ya? padahal sudah http_access deny
akhirnya saya matikan lagi transparant proxy nya. thx ini saya lampirkan squid.conf nya http_port 3128 icp_port 3130 tcp_outgoing_address 0.0.0.0 udp_incoming_address 0.0.0.0 udp_outgoing_address 0.0.0.0 #cache_peer proxies.telkom.net.id parent 8080 3130 default #cache_peer proxy-sby.telkom.net.id sibling 8080 3130 round-robin #httpd_accel_host virtual #httpd_accel_port 80 #httpd_accel_with_proxy on #httpd_accel_uses_host_header on cache_mem 128 MB acl pornexprs url_regex -i "/etc/squid/pornexprs" acl blockedsites url_regex -i "/etc/squid/blockedsites" #acl ext_file url_regex -i ftp http https .exe .mp3 .vqf .zip .msi .rar .avi .mpeg .mpe .mov .raw .iso .jpg .gif .bmp .psd acl blockedurls dst "/etc/squid/blockedurls" cache_dir ufs /cache 1000 16 256 cache_access_log /var/log/squid/access.log cache_log /var/log/squid/cache.log cache_store_log /var/log/squid/store.log client_netmask 255.255.255.255 unlinkd_program /usr/libexec/unlinkd refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern . 0 20% 4320 #redirect_program /usr/bin/squidGuard #redirect_children 15 acl all src 0.0.0.0/0.0.0.0 acl manager proto cache_object acl localhost src 127.0.0.1 192.168.1.0/255.255.255.0 acl SSL_ports port 443 563 acl Safe_ports port 80 21 443 563 70 210 280 488 591 777 110 acl CONNECT method CONNECT acl IIX dst_as 7597 # public area acl library_tt src 192.168.1.61-192.168.1.70/255.255.255.255 acl lab1 src 192.168.1.1-192.168.1.30/255.255.255.255 acl lab2 src 192.168.1.31-192.168.1.60/255.255.255.255 acl lab1w src 192.168.0.1-192.168.0.30/255.255.255.255 acl lab2w src 192.168.0.31-192.168.0.60/255.255.255.255 #acl hotspot src 192.168.0.1-192.168.0.60/255.255.255.255 # private area acl XPServer src 192.168.1.22/255.255.255.255 acl XPServer2 src 192.168.0.22/255.255.255.255 acl DServer src 192.168.1.251/255.255.255.255 acl FServer src 192.168.1.250/255.255.255.255 #rule http_access deny pornexprs http_access deny blockedsites !XPServer !XPServer2 http_access deny blockedurls !XPServer !XPServer2 http_access allow manager http_access allow localhost http_access allow XPServer http_access allow XPServer2 http_access allow DServer http_access allow FServer http_access deny library_tt #http_access allow lab1 http_access deny lab1 #http_access allow lab2 http_access deny lab2 #http_access allow lab1 http_access deny lab1w #http_access allow lab2 http_access deny lab2w # http_access allow hotspot # http_access deny hotspot http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access deny all http_access allow IIX always_direct allow IIX always_direct deny all http_reply_access allow all #reply_body_max_size 1024000 allow ext_file lab1 lab2 library_tt icp_access allow all cache_mgr [EMAIL PROTECTED] cache_effective_user squid cache_effective_group squid visible_hostname FServer -- FAQ milis di http://wiki.linux.or.id/FAQ_milis_tanya-jawab Unsubscribe: kirim email ke [EMAIL PROTECTED] Arsip dan info milis selengkapnya di http://linux.or.id/milis