Transparent Proxy

Discussion regarding the installation and configuration of Linux distributions.
Siraj Ahmed
Lance Naik
Posts: 25
Joined: Thu Dec 08, 2005 10:22 pm
Location: New Karachi
Contact:

Transparent Proxy

Postby Siraj Ahmed » Mon Aug 27, 2007 5:24 pm

Assalam o Alykum
machine = Fedoran 6, squid 2.6 stable 4
internet line = DSL from PTCL through Lan Modem 192.168.1.1

eth0 = ip = 192.168.1.3 connected with PTCL modem
sm = 255.255.255.0
defaul gw = 192.168.1.1


eth1 = ip = 192.168.10.10 connected LAN users
sm = 255.255.255.0

clients PCs per
browsing ho rahi hai explorer mai ip deney key baad
yahoo aur mns messenger bhi connect ho raha hai ip key saath

mai chahata ho browsing aur messenger withou ip key connect ho yani Transparent
pls koi hall batain

Siraj Ahemd 0300 - 9217465

ather_36
Naik
Posts: 97
Joined: Thu Jul 31, 2003 11:38 am
Location: karachi
Contact:

Postby ather_36 » Mon Aug 27, 2007 9:10 pm

U have to compile squid with squid source code.Download the squid from www.squid-cache.org and do the following steps:
1) save the squid file in /tmp
2) Run tar -zxvf squid-2.5.STABLE14.tar.gz
3) cd squid-2.5.STABLE14
4) ./configure --enable-linux-netfilter
5) make all
6) make install
7) iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT --to 8080

Specfily the incoming interface after "-i" If ur incoming interface is eth1 copy and paste the command if it is eth0 then change it to eth0 after -i.
You also need to change the start and stop script.So here is the startup/stop script.U just need to copy the script from here and create a file in ur linux machine "touch squid" and copy this file to the following path /etc/rc.d/init.d .... It will ask for overrite/replace u just press "y"....



#!/bin/bash
# squid This shell script takes care of starting and stopping
# Squid Internet Object Cache
#
# chkconfig: - 90 25
# description: Squid - Internet Object Cache. Internet object caching is \
# a way to store requested Internet objects (i.e., data available \
# via the HTTP, FTP, and gopher protocols) on a system closer to the \
# requesting site than to the source. Web browsers can then use the \
# local Squid cache as a proxy HTTP server, reducing access time as \
# well as bandwidth consumption.
# pidfile: /var/run/squid.pid
# config: /etc/squid/squid.conf

PATH=/usr/local/squid/sbin:/usr/bin:/sbin:/bin:/usr/sbin
export PATH

# Source function library.
. /etc/rc.d/init.d/functions

# Source networking configuration.
. /etc/sysconfig/network

# Check that networking is up.
[ ${NETWORKING} = "no" ] && exit 0

# check if the squid conf file is present
[ -f /usr/local/squid/etc/squid.conf ] || exit 0

if [ -f /etc/sysconfig/squid ]; then
. /etc/sysconfig/squid
fi

# don't raise an error if the config file is incomplete
# set defaults instead:
SQUID_OPTS=${SQUID_OPTS:-"-D"}
SQUID_PIDFILE_TIMEOUT=${SQUID_PIDFILE_TIMEOUT:-20}
SQUID_SHUTDOWN_TIMEOUT=${SQUID_SHUTDOWN_TIMEOUT:-100}

# determine the name of the squid binary
[ -f /usr/local/squid/sbin/squid ] && SQUID=/usr/local/squid/sbin/squid
[ -z "$SQUID" ] && exit 0

prog="$SQUID"

# determine which one is the cache_swap directory
CACHE_SWAP=`sed -e 's/#.*//g' /usr/local/squid/etc/squid.conf | \
grep cache_dir | awk '{ print $3 }'`
[ -z "$CACHE_SWAP" ] && CACHE_SWAP=/usr/local/squid/var/cache

RETVAL=0

start() {
for adir in $CACHE_SWAP; do
if [ ! -d $adir/00 ]; then
echo -n "init_cache_dir $adir... "
$SQUID -z -F -D >> /usr/local/squid/var/logs/squid.out 2>&1
fi
done
echo -n $"Starting $prog: "
$SQUID $SQUID_OPTS >> /usr/local/squid/var/logs/squid.out 2>&1
RETVAL=$?
if [ $RETVAL -eq 0 ]; then
timeout=0;
while : ; do
[ ! -f /usr/local/squid/var/logs/squid.pid ] || break
if [ $timeout -ge $SQUID_PIDFILE_TIMEOUT ]; then
RETVAL=1
break
fi
sleep 1 && echo -n "."
timeout=$((timeout+1))
done
fi
[ $RETVAL -eq 0 ] && touch /var/lock/subsys/squid
[ $RETVAL -eq 0 ] && echo_success
[ $RETVAL -ne 0 ] && echo_failure
echo
return $RETVAL
}

stop() {
echo -n $"Stopping $prog: "
$SQUID -k check >> /usr/local/squid/var/logs/squid.out 2>&1
RETVAL=$?
if [ $RETVAL -eq 0 ] ; then
$SQUID -k shutdown &
rm -f /var/lock/subsys/squid
timeout=0
while : ; do
[ -f /var/run/squid.pid ] || break
if [ $timeout -ge $SQUID_SHUTDOWN_TIMEOUT ]; then
echo
return 1
fi
sleep 2 && echo -n "."
timeout=$((timeout+2))
done
echo_success
echo
else
echo_failure
echo
fi
return $RETVAL
}

reload() {
$SQUID $SQUID_OPTS -k reconfigure
}

restart() {
stop
start
}

condrestart() {
[ -e /var/lock/subsys/squid ] && restart || :
}

rhstatus() {
status $SQUID && $SQUID -k check
}

probe() {
return 0
}

case "$1" in
start)
start
;;

stop)
stop
;;

reload)
reload
;;

restart)
restart
;;

condrestart)
condrestart
;;

status)
rhstatus
;;

probe)
exit 0
;;

*)
echo $"Usage: $0 {start|stop|status|reload|restart|condrestart}"
exit 1
esac

exit $?


Also change the permission of file to chmod 755 squid. If u face and problem regarding to the file or something else just pm me.
Thanks & Regards
Athar Hussain

Siraj Ahmed
Lance Naik
Posts: 25
Joined: Thu Dec 08, 2005 10:22 pm
Location: New Karachi
Contact:

Postby Siraj Ahmed » Thu Aug 30, 2007 12:18 am


ather_36
Naik
Posts: 97
Joined: Thu Jul 31, 2003 11:38 am
Location: karachi
Contact:

Postby ather_36 » Thu Aug 30, 2007 9:47 am

Thanks & Regards

Athar Hussain

mudasir
Captain
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Location: Dubai
Contact:

Postby mudasir » Thu Aug 30, 2007 10:33 am

Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com

sarthor
Battalion Quarter Master Havaldaar
Posts: 241
Joined: Wed Dec 24, 2003 2:36 am
Location: Pukhtoonistan
Contact:

Postby sarthor » Mon Dec 03, 2007 7:27 pm

Tefl E Maktab
-----------------------------
----- ----- ----- ------ ------ -------

x2oxen
Major General
Posts: 1114
Joined: Wed Aug 22, 2007 3:17 pm
Location: Faisalabad
Contact:

Postby x2oxen » Tue Dec 04, 2007 12:05 am

Muhammad Usman
+92-321-6640501
Chemonics International
http://usmanpk.com

lambda
Major General
Posts: 3452
Joined: Tue May 27, 2003 7:04 pm
Location: Lahore
Contact:

Postby lambda » Tue Dec 04, 2007 2:51 pm

Watch out for the !
Isn't it amazing how so many people can type "linuxpakistan.net" into their browsers but not "google.com"?

sarthor
Battalion Quarter Master Havaldaar
Posts: 241
Joined: Wed Dec 24, 2003 2:36 am
Location: Pukhtoonistan
Contact:

Postby sarthor » Wed Dec 05, 2007 4:56 pm

Salam O Alykum,
Thank you for replying
I have paste my squid.conf here
and i am using ubuntu lamp server on this computer, my squid is not compiled, its the squid shipped with this distro.

Salam O Alykum
Tefl E Maktab

-----------------------------

----- ----- ----- ------ ------ -------


Return to “Installation”

Who is online

Users browsing this forum: No registered users and 1 guest