SlideShare una empresa de Scribd logo

Squid Server

Descargar como PPT, PDF
Sumant Garg
Sumant Garg

This Ppt contains some details about squid server, Linux must see it once.

Tecnología
1 de 25
What is Squid?
Other proxies
What is a proxy?
What is a caching proxy?
How proxies work (configuration)
Setup Proxy In Browser
How proxies work (user request)
Cacheable objects
Non-cacheable objects
Transparent proxying
Transparent proxying
Squid hardware requirements
∗ 1.x and 1.NOVM.x ∗ No longer supported ∗ Entire cache lost if even one disk in cache fails ∗ Doesn’t understand Cache-Control: tag ∗ Other problems ∗ Bottom line: don’t use them Squid distributions (versions)
∗ 2.0, 2.1, 2.2 ∗ Redesigned disk storage algorithm much improved ∗ Understands Cache-Control: tag ∗ Better LRU/refresh rule engine ∗ Supports proxy authentication ∗ See documentation for full list of enhancements ∗ Recommendation: 2.1 is fairly stable, but move to 2.2 when 2.2STABLE released Squid distributions (versions)
∗ acl manager proto cache_object ∗ acl localhost src 127.0.0.1/32 ∗ acl managerhost src 204.248.51.34/32 ∗ acl managerhost src 204.248.51.39/32 ∗ acl managerhost src 204.248.51.40/32 ∗ acl cawtech src 204.248.51.0/24 ∗ acl cawtech-internal src 172.16.0.0/16 ∗ acl all src 0.0.0.0/0.0.0.0 squid.conf ACL example
∗ acl SSL_ports port 443 563 ∗ acl gopher_ports port 70 ∗ acl wais_ports port 210 ∗ acl whois_ports port 43 ∗ acl www_ports port 80 81 ∗ acl ftp_ports port 21 ∗ acl Safe_ports port 1025-65535 ∗ acl CONNECT method CONNECT ∗ acl FTP proto FTP ∗ acl HTTP proto HTTP ∗ acl WAIS proto WAIS ∗ acl GOPHER proto GOPHER ∗ acl WHOIS proto WHOIS squid.conf ACL example
∗ http_access deny manager !localhost !managerhost ∗ http_access deny CONNECT !SSL_ports ∗ http_access deny HTTP !www_ports !Safe_ports ∗ http_access deny FTP !ftp_ports !Safe_ports ∗ http_access deny GOPHER !gopher_ports !Safe_ports ∗ http_access deny WAIS !wais_ports !Safe_ports ∗ http_access deny WHOIS !whois_ports !Safe_ports ∗ http_access allow localhost ∗ http_access allow cawtech ∗ http_access allow cawtech-internal ∗ http_access deny all squid.conf ACL example
∗ File we Edit for Sqid /etc/squid/squid.conf ∗ acl mysurfers srcdomain .facebook.com ∗ acl teachers src 192.168.1.0/255.255.255.0 ∗ acl students src 192.168.7.0-192.168.9.0/255.255.255.0 ∗ acl lunch time MTWHF 12:00-15:00 ∗ http_access deny localhost ∗ http_access allow teachers ∗ http_access allow students lunch time ∗ http_access deny all ∗ visible_hostname machine-name ∗ http_port 3128 ∗ cache_dir ufs /var/spool/squid 1000 16 256 ∗ cache_access_log /var/log/squid/access.log Sample proxy auto-configuration
Advantages of Squid
Advantages of Squid
Advantages of Squid
Squid Server

Recomendados

Squid Proxy Server
Squid Proxy ServerSquid Proxy Server
Squid Proxy Server
13bcs0012
 
Squid proxy-configuration-guide
Squid proxy-configuration-guideSquid proxy-configuration-guide
Squid proxy-configuration-guide
jasembo
 
Squid server
Squid serverSquid server
Squid server
Rohit Phulsunge
 
Squid Caching for Web Content Accerlation
Squid Caching for Web Content AccerlationSquid Caching for Web Content Accerlation
Squid Caching for Web Content Accerlation
rahul8590
 
Project on squid proxy in rhel 6
Project on squid proxy in rhel 6Project on squid proxy in rhel 6
Project on squid proxy in rhel 6
Nutan Kumar Panda
 
Squid
SquidSquid
Squid
Syeda Javeria
 
Squid
SquidSquid
Squid
Chirag Gupta
 
Squid proxy server
Squid proxy serverSquid proxy server
Squid proxy server
Green Jb
 

Recomendados

Squid Proxy Server
Squid Proxy ServerSquid Proxy Server
Squid Proxy Server
13bcs0012
 
Squid proxy-configuration-guide
Squid proxy-configuration-guideSquid proxy-configuration-guide
Squid proxy-configuration-guide
jasembo
 
Squid server
Squid serverSquid server
Squid server
Rohit Phulsunge
 
Squid Caching for Web Content Accerlation
Squid Caching for Web Content AccerlationSquid Caching for Web Content Accerlation
Squid Caching for Web Content Accerlation
rahul8590
 
Project on squid proxy in rhel 6
Project on squid proxy in rhel 6Project on squid proxy in rhel 6
Project on squid proxy in rhel 6
Nutan Kumar Panda
 
Squid
SquidSquid
Squid
Syeda Javeria
 
Squid
SquidSquid
Squid
Chirag Gupta
 
Squid proxy server
Squid proxy serverSquid proxy server
Squid proxy server
Green Jb
 
Docker Setting for Static IP allocation
Docker Setting for Static IP allocationDocker Setting for Static IP allocation
Docker Setting for Static IP allocation
Ji-Woong Choi
 
Choosing A Proxy Server - Apachecon 2014
Choosing A Proxy Server - Apachecon 2014Choosing A Proxy Server - Apachecon 2014
Choosing A Proxy Server - Apachecon 2014
bryan_call
 
Installation Openstack Swift
Installation Openstack SwiftInstallation Openstack Swift
Installation Openstack Swift
ymtech
 
SERENE 2014 School: Measurement-Driven Resilience Design of Cloud-Based Cyber...
SERENE 2014 School: Measurement-Driven Resilience Design of Cloud-Based Cyber...SERENE 2014 School: Measurement-Driven Resilience Design of Cloud-Based Cyber...
SERENE 2014 School: Measurement-Driven Resilience Design of Cloud-Based Cyber...
Henry Muccini
 
Proxy
ProxyProxy
Proxy
leminhvuong
 
青云CoreOS虚拟机部署kubernetes
青云CoreOS虚拟机部署kubernetes 青云CoreOS虚拟机部署kubernetes
青云CoreOS虚拟机部署kubernetes
Zhichao Liang
 
CoreOS intro
CoreOS introCoreOS intro
CoreOS intro
Timo Derstappen
 
Introduction to Haproxy
Introduction to HaproxyIntroduction to Haproxy
Introduction to Haproxy
Shaopeng He
 
Docker and Fargate
Docker and FargateDocker and Fargate
Docker and Fargate
Shinji Miyazato
 
Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0
Philippe Bogaerts
 
Kubernetes networking - basics
Kubernetes networking - basicsKubernetes networking - basics
Kubernetes networking - basics
Juraj Hantak
 
Acus08 Advanced Load Balancing Apache2.2
Acus08 Advanced Load Balancing Apache2.2Acus08 Advanced Load Balancing Apache2.2
Acus08 Advanced Load Balancing Apache2.2
Jim Jagielski
 
NGiNX, VHOSTS & SSL (let's encrypt)
NGiNX, VHOSTS & SSL (let's encrypt)NGiNX, VHOSTS & SSL (let's encrypt)
NGiNX, VHOSTS & SSL (let's encrypt)
Marcel Cattaneo
 
Ansible ex407 and EX 294
Ansible ex407 and EX 294Ansible ex407 and EX 294
Ansible ex407 and EX 294
IkiArif1
 
Apache httpd 2.4 Reverse Proxy
Apache httpd 2.4 Reverse ProxyApache httpd 2.4 Reverse Proxy
Apache httpd 2.4 Reverse Proxy
Jim Jagielski
 
Nginx Internals
Nginx InternalsNginx Internals
Nginx Internals
Joshua Zhu
 
Docker Security in Production Overview
Docker Security in Production OverviewDocker Security in Production Overview
Docker Security in Production Overview
Delve Labs
 
Docker Meetup: Docker Networking 1.11, by Madhu Venugopal
Docker Meetup: Docker Networking 1.11, by Madhu VenugopalDocker Meetup: Docker Networking 1.11, by Madhu Venugopal
Docker Meetup: Docker Networking 1.11, by Madhu Venugopal
Michelle Antebi
 
The Basic Introduction of Open vSwitch
The Basic Introduction of Open vSwitchThe Basic Introduction of Open vSwitch
The Basic Introduction of Open vSwitch
Te-Yen Liu
 
Docker 1.11 @ Docker SF Meetup
Docker 1.11 @ Docker SF MeetupDocker 1.11 @ Docker SF Meetup
Docker 1.11 @ Docker SF Meetup
Docker, Inc.
 
Pg py-and-squid-pypgday
Pg py-and-squid-pypgdayPg py-and-squid-pypgday
Pg py-and-squid-pypgday
PostgreSQL Experts, Inc.
 
Squid beak
Squid beakSquid beak
Squid beak
Robin Seamon
 

Más contenido relacionado

La actualidad más candente

Choosing A Proxy Server - Apachecon 2014
Choosing A Proxy Server - Apachecon 2014Choosing A Proxy Server - Apachecon 2014
Choosing A Proxy Server - Apachecon 2014
bryan_call
 

La actualidad más candente (20)

Docker Setting for Static IP allocation
Docker Setting for Static IP allocationDocker Setting for Static IP allocation
Docker Setting for Static IP allocation
 
Choosing A Proxy Server - Apachecon 2014
Choosing A Proxy Server - Apachecon 2014Choosing A Proxy Server - Apachecon 2014
Choosing A Proxy Server - Apachecon 2014
 
Installation Openstack Swift
Installation Openstack SwiftInstallation Openstack Swift
Installation Openstack Swift
 
SERENE 2014 School: Measurement-Driven Resilience Design of Cloud-Based Cyber...
SERENE 2014 School: Measurement-Driven Resilience Design of Cloud-Based Cyber...SERENE 2014 School: Measurement-Driven Resilience Design of Cloud-Based Cyber...
SERENE 2014 School: Measurement-Driven Resilience Design of Cloud-Based Cyber...
 
Proxy
ProxyProxy
Proxy
 
青云CoreOS虚拟机部署kubernetes
青云CoreOS虚拟机部署kubernetes 青云CoreOS虚拟机部署kubernetes
青云CoreOS虚拟机部署kubernetes
 
CoreOS intro
CoreOS introCoreOS intro
CoreOS intro
 
Introduction to Haproxy
Introduction to HaproxyIntroduction to Haproxy
Introduction to Haproxy
 
Docker and Fargate
Docker and FargateDocker and Fargate
Docker and Fargate
 
Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0
 
Kubernetes networking - basics
Kubernetes networking - basicsKubernetes networking - basics
Kubernetes networking - basics
 
Acus08 Advanced Load Balancing Apache2.2
Acus08 Advanced Load Balancing Apache2.2Acus08 Advanced Load Balancing Apache2.2
Acus08 Advanced Load Balancing Apache2.2
 
NGiNX, VHOSTS & SSL (let's encrypt)
NGiNX, VHOSTS & SSL (let's encrypt)NGiNX, VHOSTS & SSL (let's encrypt)
NGiNX, VHOSTS & SSL (let's encrypt)
 
Ansible ex407 and EX 294
Ansible ex407 and EX 294Ansible ex407 and EX 294
Ansible ex407 and EX 294
 
Apache httpd 2.4 Reverse Proxy
Apache httpd 2.4 Reverse ProxyApache httpd 2.4 Reverse Proxy
Apache httpd 2.4 Reverse Proxy
 
Nginx Internals
Nginx InternalsNginx Internals
Nginx Internals
 
Docker Security in Production Overview
Docker Security in Production OverviewDocker Security in Production Overview
Docker Security in Production Overview
 
Docker Meetup: Docker Networking 1.11, by Madhu Venugopal
Docker Meetup: Docker Networking 1.11, by Madhu VenugopalDocker Meetup: Docker Networking 1.11, by Madhu Venugopal
Docker Meetup: Docker Networking 1.11, by Madhu Venugopal
 
The Basic Introduction of Open vSwitch
The Basic Introduction of Open vSwitchThe Basic Introduction of Open vSwitch
The Basic Introduction of Open vSwitch
 
Docker 1.11 @ Docker SF Meetup
Docker 1.11 @ Docker SF MeetupDocker 1.11 @ Docker SF Meetup
Docker 1.11 @ Docker SF Meetup
 

Destacado

How to handle extracurriculars in medical school
How to handle extracurriculars in medical schoolHow to handle extracurriculars in medical school
How to handle extracurriculars in medical school
astraflame
 
Final presentation
Final presentationFinal presentation
Final presentation
rabman
 
Sprint review
Sprint reviewSprint review
Sprint review
rabman
 
Quantum physics - Bohr Atom
Quantum physics - Bohr AtomQuantum physics - Bohr Atom
Quantum physics - Bohr Atom
TL Lee
 
Summary of response
Summary of responseSummary of response
Summary of response
TL Lee
 
Sharing your-internet-connection-on-linux
Sharing your-internet-connection-on-linuxSharing your-internet-connection-on-linux
Sharing your-internet-connection-on-linux
jasembo
 
Http Proxy Server
Http Proxy ServerHttp Proxy Server
Http Proxy Server
Sourav Roy
 

Destacado (20)

Pg py-and-squid-pypgday
Pg py-and-squid-pypgdayPg py-and-squid-pypgday
Pg py-and-squid-pypgday
 
Squid beak
Squid beakSquid beak
Squid beak
 
RHCE (RED HAT CERTIFIED ENGINEERING)
RHCE (RED HAT CERTIFIED ENGINEERING)RHCE (RED HAT CERTIFIED ENGINEERING)
RHCE (RED HAT CERTIFIED ENGINEERING)
 
Squid proxy-server
Squid proxy-serverSquid proxy-server
Squid proxy-server
 
How to handle extracurriculars in medical school
How to handle extracurriculars in medical schoolHow to handle extracurriculars in medical school
How to handle extracurriculars in medical school
 
Mentoring
MentoringMentoring
Mentoring
 
Final presentation
Final presentationFinal presentation
Final presentation
 
Sprint review
Sprint reviewSprint review
Sprint review
 
New phrasal verbs
New phrasal verbsNew phrasal verbs
New phrasal verbs
 
Redrawing the Energy-Climate Map
Redrawing the Energy-Climate MapRedrawing the Energy-Climate Map
Redrawing the Energy-Climate Map
 
Mission Impossible 7 "The Scavenger Hunt"
Mission Impossible 7 "The Scavenger Hunt"Mission Impossible 7 "The Scavenger Hunt"
Mission Impossible 7 "The Scavenger Hunt"
 
Quantum physics - Bohr Atom
Quantum physics - Bohr AtomQuantum physics - Bohr Atom
Quantum physics - Bohr Atom
 
Ictlt tracker presentation
Ictlt tracker presentationIctlt tracker presentation
Ictlt tracker presentation
 
Summary of response
Summary of responseSummary of response
Summary of response
 
Analysing solar spectrum
Analysing solar spectrumAnalysing solar spectrum
Analysing solar spectrum
 
Sharing your-internet-connection-on-linux
Sharing your-internet-connection-on-linuxSharing your-internet-connection-on-linux
Sharing your-internet-connection-on-linux
 
Resume Narya_UX Designer_2016
Resume Narya_UX Designer_2016Resume Narya_UX Designer_2016
Resume Narya_UX Designer_2016
 
Datasheets- albatross lab
Datasheets- albatross labDatasheets- albatross lab
Datasheets- albatross lab
 
Advantages of proxy server
Advantages of proxy serverAdvantages of proxy server
Advantages of proxy server
 
Http Proxy Server
Http Proxy ServerHttp Proxy Server
Http Proxy Server
 

Similar a Squid Server

Apache Wizardry - Ohio Linux 2011
Apache Wizardry - Ohio Linux 2011Apache Wizardry - Ohio Linux 2011
Apache Wizardry - Ohio Linux 2011
Rich Bowen
 
17937858 squid-server - [the-xp.blogspot.com]
17937858 squid-server - [the-xp.blogspot.com]17937858 squid-server - [the-xp.blogspot.com]
17937858 squid-server - [the-xp.blogspot.com]
Krisman Tarigan
 
17) 11 (may, 2003) squid master this proxy server
17) 11 (may, 2003) squid master this proxy server17) 11 (may, 2003) squid master this proxy server
17) 11 (may, 2003) squid master this proxy server
swarup1435
 

Similar a Squid Server (20)

[Devconf.cz][2017] Understanding OpenShift Security Context Constraints
[Devconf.cz][2017] Understanding OpenShift Security Context Constraints[Devconf.cz][2017] Understanding OpenShift Security Context Constraints
[Devconf.cz][2017] Understanding OpenShift Security Context Constraints
 
Docker and friends at Linux Days 2014 in Prague
Docker and friends at Linux Days 2014 in PragueDocker and friends at Linux Days 2014 in Prague
Docker and friends at Linux Days 2014 in Prague
 
Docker 0.11 at MaxCDN meetup in Los Angeles
Docker 0.11 at MaxCDN meetup in Los AngelesDocker 0.11 at MaxCDN meetup in Los Angeles
Docker 0.11 at MaxCDN meetup in Los Angeles
 
Docker container management
Docker container managementDocker container management
Docker container management
 
Apache Wizardry - Ohio Linux 2011
Apache Wizardry - Ohio Linux 2011Apache Wizardry - Ohio Linux 2011
Apache Wizardry - Ohio Linux 2011
 
Bare Metal to OpenStack with Razor and Chef
Bare Metal to OpenStack with Razor and ChefBare Metal to OpenStack with Razor and Chef
Bare Metal to OpenStack with Razor and Chef
 
cache concepts and varnish-cache
cache concepts and varnish-cachecache concepts and varnish-cache
cache concepts and varnish-cache
 
2015 05-06-elias weingaertner-docker-intro
2015 05-06-elias weingaertner-docker-intro2015 05-06-elias weingaertner-docker-intro
2015 05-06-elias weingaertner-docker-intro
 
Dockerizing the Hard Services: Neutron and Nova
Dockerizing the Hard Services: Neutron and NovaDockerizing the Hard Services: Neutron and Nova
Dockerizing the Hard Services: Neutron and Nova
 
Jfrog artifactory as private docker registry
Jfrog artifactory as private docker registryJfrog artifactory as private docker registry
Jfrog artifactory as private docker registry
 
Introduction to Kalabox
Introduction to KalaboxIntroduction to Kalabox
Introduction to Kalabox
 
Docker
DockerDocker
Docker
 
Why you’re going to fail running java on docker!
Why you’re going to fail running java on docker!Why you’re going to fail running java on docker!
Why you’re going to fail running java on docker!
 
Apache Cookbook - TekX Chicago 2010
Apache Cookbook - TekX Chicago 2010Apache Cookbook - TekX Chicago 2010
Apache Cookbook - TekX Chicago 2010
 
Detailed Introduction To Docker
Detailed Introduction To DockerDetailed Introduction To Docker
Detailed Introduction To Docker
 
Unidade3 roteiro proxy
Unidade3 roteiro proxyUnidade3 roteiro proxy
Unidade3 roteiro proxy
 
The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, Orchestration
The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, OrchestrationThe Docker "Gauntlet" - Introduction, Ecosystem, Deployment, Orchestration
The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, Orchestration
 
17937858 squid-server - [the-xp.blogspot.com]
17937858 squid-server - [the-xp.blogspot.com]17937858 squid-server - [the-xp.blogspot.com]
17937858 squid-server - [the-xp.blogspot.com]
 
17) 11 (may, 2003) squid master this proxy server
17) 11 (may, 2003) squid master this proxy server17) 11 (may, 2003) squid master this proxy server
17) 11 (may, 2003) squid master this proxy server
 
Build a Docker Swarm cluster on Azure
Build a Docker Swarm cluster on Azure Build a Docker Swarm cluster on Azure
Build a Docker Swarm cluster on Azure
 

Último

Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
Enterprise Knowledge
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 

Último (20)

Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of Brazil
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 

Squid Server

  • 1.
  • 4. What is a proxy?
  • 5. What is a caching proxy?
  • 6. How proxies work (configuration)
  • 7. Setup Proxy In Browser
  • 8. How proxies work (user request)
  • 11.
  • 15. ∗ 1.x and 1.NOVM.x ∗ No longer supported ∗ Entire cache lost if even one disk in cache fails ∗ Doesn’t understand Cache-Control: tag ∗ Other problems ∗ Bottom line: don’t use them Squid distributions (versions)
  • 16. ∗ 2.0, 2.1, 2.2 ∗ Redesigned disk storage algorithm much improved ∗ Understands Cache-Control: tag ∗ Better LRU/refresh rule engine ∗ Supports proxy authentication ∗ See documentation for full list of enhancements ∗ Recommendation: 2.1 is fairly stable, but move to 2.2 when 2.2STABLE released Squid distributions (versions)
  • 17. ∗ acl manager proto cache_object ∗ acl localhost src 127.0.0.1/32 ∗ acl managerhost src 204.248.51.34/32 ∗ acl managerhost src 204.248.51.39/32 ∗ acl managerhost src 204.248.51.40/32 ∗ acl cawtech src 204.248.51.0/24 ∗ acl cawtech-internal src 172.16.0.0/16 ∗ acl all src 0.0.0.0/0.0.0.0 squid.conf ACL example
  • 18. ∗ acl SSL_ports port 443 563 ∗ acl gopher_ports port 70 ∗ acl wais_ports port 210 ∗ acl whois_ports port 43 ∗ acl www_ports port 80 81 ∗ acl ftp_ports port 21 ∗ acl Safe_ports port 1025-65535 ∗ acl CONNECT method CONNECT ∗ acl FTP proto FTP ∗ acl HTTP proto HTTP ∗ acl WAIS proto WAIS ∗ acl GOPHER proto GOPHER ∗ acl WHOIS proto WHOIS squid.conf ACL example
  • 19. ∗ http_access deny manager !localhost !managerhost ∗ http_access deny CONNECT !SSL_ports ∗ http_access deny HTTP !www_ports !Safe_ports ∗ http_access deny FTP !ftp_ports !Safe_ports ∗ http_access deny GOPHER !gopher_ports !Safe_ports ∗ http_access deny WAIS !wais_ports !Safe_ports ∗ http_access deny WHOIS !whois_ports !Safe_ports ∗ http_access allow localhost ∗ http_access allow cawtech ∗ http_access allow cawtech-internal ∗ http_access deny all squid.conf ACL example
  • 20. ∗ File we Edit for Sqid /etc/squid/squid.conf ∗ acl mysurfers srcdomain .facebook.com ∗ acl teachers src 192.168.1.0/255.255.255.0 ∗ acl students src 192.168.7.0-192.168.9.0/255.255.255.0 ∗ acl lunch time MTWHF 12:00-15:00 ∗ http_access deny localhost ∗ http_access allow teachers ∗ http_access allow students lunch time ∗ http_access deny all ∗ visible_hostname machine-name ∗ http_port 3128 ∗ cache_dir ufs /var/spool/squid 1000 16 256 ∗ cache_access_log /var/log/squid/access.log Sample proxy auto-configuration
  • 21.