Tanya,.Baru aja buat Proxy Squid kok Eror

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
User avatar
chitoz
Posts: 86
Joined: 11 May 2012, 16:38

Tanya,.Baru aja buat Proxy Squid kok Eror

Postby chitoz » 19 Nov 2012, 23:12

gan ane baru aja buat proxy,.kenapa semua clien ngga bisa internet
pas di browser keluar kayak gini

--------------------
[size:14pt]
ERROR
The requested URL could not be retrieved
[/size]

The following error was encountered while trying to retrieve the URL: http://www.detik.com/

[size:11pt] Access Denied.[/size]

Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect.

Your cache administrator is webmaster@testproxy.com.

Generated Mon, 19 Nov 2012 16:04:05 GMT by test-proxy (squid/2.7.STABLE7)
-------------------------------------

MAAF ini kira2 salah edit di mananya ya..??

Thanks sebelumnya..:)
User avatar
Ubuntukres
Posts: 3
Joined: 04 May 2012, 22:19
Location: Bandung
Contact:

Re: Tanya,.Baru aja buat Proxy Squid kok Eror

Postby Ubuntukres » 19 Nov 2012, 23:48

sama ane juga kaya gini, ada solusinya!!!! :confused:
User avatar
q_p
Posts: 3109
Joined: 14 Oct 2012, 13:01
Contact:

Re: Tanya,.Baru aja buat Proxy Squid kok Eror

Postby q_p » 20 Nov 2012, 00:02

Mas Chitoz, saya kira pesan error yang anda posting tidak bisa membantu teman2 kita disini memecahkan masalah anda. Coba anda tambahkan topologi jaringan, firewall dan squid.conf
User avatar
chitoz
Posts: 86
Joined: 11 May 2012, 16:38

Re: Tanya,.Baru aja buat Proxy Squid kok Eror

Postby chitoz » 20 Nov 2012, 10:54

topologi jaringan nya gini mas Pati..
eth1 mikrotik to ISP
eth2 mikrotik to Proxy (ubuntu server 10.04) IP. 192.168.10.2
eth3 mikrotik to Clien IP : 192.168.1.0/24

Semua lancar (bisa Internet) sebelum di direct ke squid

Scrip Squidnya ane ngikut tutorial ini,.sebelumnya sudah saya edit sesuai Network ane..

#==================================$
# Proxy Server Versi 2.7.Stable3
#==================================$
#################################################################
# Port
#################################################################
http_port 3128 transparent
icp_port 3130
prefer_direct off
#################################################################
# Cache & Object
#################################################################
cache_mem 8 MB
cache_swap_low 98
cache_swap_high 99
max_filedesc 8192
maximum_object_size 1024 MB
minimum_object_size 0 KB
maximum_object_size_in_memory 4 bytes
ipcache_size 4096
ipcache_low 98
ipcache_high 99
fqdncache_size 4096
cache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSF
#################################################################
# cache_dir
# Maksimum Level1=((Space in byte/13)/Level2/Level2)*2
cache_dir aufs /home/proxy1 15000 32 256
cache_dir aufs /home/proxy2 15000 32 256
cache_dir aufs /home/proxy3 15000 32 256
#################################################################
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log none
pid_filename /var/run/squid.pid
cache_swap_log /var/log/squid/swap.state
dns_nameservers 127.0.0.1
emulate_httpd_log off
hosts_file /etc/hosts
half_closed_clients off
negative_ttl 1 minutes
#################################################################
# Rules: Safe Port
#################################################################
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 873 # https snews rsync
acl Safe_ports port 80 # http
acl Safe_ports port 20 21 # ftp
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 631 # cups
acl Safe_ports port 10000 # webmin
acl Safe_ports port 901 # SWAT
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 873 # rsync
acl Safe_ports port 110 # POP3
acl Safe_ports port 25 # SMTP
acl Safe_ports port 2095 2096 # webmail from cpanel
acl Safe_ports port 2082 2083 # cpanel
acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports !SSL_ports
http_access deny CONNECT !SSL_ports !Safe_ports
#################################################################
# SNMP
#################################################################
snmp_port 3401
acl snmpsquid snmp_community public
snmp_access allow snmpsquid localhost
snmp_access deny all
#################################################################
# ALLOWED ACCESS
#################################################################
acl modem url_regex 192.168.1. 192.168.2.
http_access allow !modem client
http_access allow billing
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow dl
icp_access allow localhost
icp_access deny all
always_direct deny all
#################################################################
# Cache CGI & Administrative
#################################################################
cache_mgr th@opikdesign.com
cachemgr_passwd 123 all
visible_hostname local.domain
cache_effective_user proxy
cache_effective_group proxy
coredump_dir /var/spool/squid
shutdown_lifetime 10 seconds
logfile_rotate 14


smoga bisa membantu..:)Thanks
User avatar
q_p
Posts: 3109
Joined: 14 Oct 2012, 13:01
Contact:

Re: Tanya,.Baru aja buat Proxy Squid kok Eror

Postby q_p » 20 Nov 2012, 13:13

Nah itu acl client belum dideklarasikan. Bagian yang ini sesuaikan dengan jaringan anda :

Code: Select all

acl modem url_regex 192.168.1. 192.168.2. ---> ganti = acl client 192.168.1.0/24
http_access allow !modem client           ---> ganti = http_access allow client
http_access allow billing                 ---> hapus
visible_hostname local.domain             ---> local.domain ganti dengan domain anda di mikrotik
Pastikan firewall/routing di mikrotik "semua client sudah di-redirect ke 192.168.10.2:3128". Juga pastikan mesin proxy sudah bisa terhubung ke inet (caranya dengan nge-ping inet dari mesin proxy).
Sementara ini dulu ya mas, monggo di uprek-uprek... :)
User avatar
chitoz
Posts: 86
Joined: 11 May 2012, 16:38

Re: Tanya,.Baru aja buat Proxy Squid kok Eror

Postby chitoz » 20 Nov 2012, 17:42

[quote=PragolaPati]Nah itu acl client belum dideklarasikan. Bagian yang ini sesuaikan dengan jaringan anda :

Code: Select all

acl modem url_regex 192.168.1. 192.168.2. ---> ganti = acl client 192.168.0.0/24
http_access allow !modem client           ---> ganti = http_access allow client
http_access allow billing                 ---> hapus
visible_hostname local.domain             ---> local.domain ganti dengan domain anda di mikrotik
Pastikan firewall/routing di mikrotik "semua client sudah di-redirect ke 192.168.10.2:3128". Juga pastikan mesin proxy sudah bisa terhubung ke inet (caranya dengan nge-ping inet dari mesin proxy).
Sementara ini dulu ya mas, monggo di uprek-uprek... :)


di router mikrotik "semua client sudah di-redirect ke 192.168.10.2:3128",.
mesin proxy juga suh bisa Internetan/sudah terhubung ke internet

tetapi dr clien belum bisa terhubung ke inet..:(