ask? Squid3 delaypool tidak jalan

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
User avatar
elzein
Posts: 4
Joined: 15 May 2013, 08:54
Location: pasuruan, indonesia
Contact:

ask? Squid3 delaypool tidak jalan

Postby elzein » 25 May 2013, 05:34

Help mastah

tolong dibantu dunk, ini saya bikin proxy server squid3 di ubuntu 12.04 LTS, saat di run block website jalan, tapi saat di tes delaypool dari client ternyata client tetap tidak terfilter padahal di access.log nya masuk

tolong dibantu ini setting squid.conf
Tampilkan
#-----------------------------------------------------------------
acl manager proto cache_object
acl localhost src 127.0.0.1/32 ::1
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.1.0/24 # RFC1918 possible internal network
acl localnet src fc00::/7 # RFC 4193 local private network range
acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines


acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl CONNECT method CONNECT

#---------------------------------------------------------
acl admin src "/etc/squid3/source/admin.txt"
acl block_lan src "/etc/squid3/source/block_lan.txt"
#---------------------------------------------------------

#---------------------------------------------------------url block
acl blocksite dstdomain "/etc/squid3/source/blocksite.txt"
acl blockey url_regex -i "/etc/squid3/source/blockey.txt"
acl blockip dst "/etc/squid3/source/blockip.txt"
acl download url_regex -i "/etc/squid3/source/multimedia"
acl download url_regex -i "/etc/squid3/source/document"
#---------------------------------------------------------

#---------------------------------------------------------hak akses waktu
acl jam1 time MTWHF 06:00-16:00
acl break time MTWHF 09:30-09:40
acl break time MTWHF 12:00-12:50
acl jam2 time MTWHF 20:00-23:59
acl jam2 time MTWHF 00:00-05:00
acl break time MTWHF 00:01-00:40
acl break time MTWHF 04:00-06:00
#---------------------------------------------------------

#
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny blocksite
http_access deny blockey
http_access deny blockip
http_access allow localhost
http_access allow localnet
http_access deny all
#

#
http_port 192.168.1.6:3128
visible_hostname proxy.localnet
via off
forwarded_for off
hierarchy_stoplist cgi-bin ?
cache_dir ufs /cache 10024 16 256
coredump_dir /var/spool/squid
#

#
access_log /var/log/squid3/access.log squid
cache_log /var/log/squid3/cache.log
cache_store_log none
logfile_rotate 10
emulate_httpd_log off
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320

cache_mem 512 MB
cache_swap_low 95
cache_swap_high 99
maximum_object_size 700 MB
minimum_object_size 0 KB
maximum_object_size_in_memory 80000 KB
cache_replacement_policy lru
memory_replacement_policy lru

dns_nameservers 202.134.1.10 202.134.0.155
cache_mgr webmaster
#

# ======================================= DELAYPOOL START

# ===== delaypool - jumlah
delay_pools 1

# ===== delaypool - rules
delay_class 1 2

# ===== delaypool - detail
delay_parameters 1 -1/-1 1000/1000


delay_access 1 allow download

# ======================================= DELAYPOOL END


dan ini hasil lognya kenapa TCP_MISS???

Code: Select all

1369434720.221    979 192.168.1.120 TCP_MISS/204 537 GET http://s.youtube.com/s? - DIRECT/74.125.235.40 text/html
1369434722.136 203179 192.168.1.120 TCP_MISS/200 7036 CONNECT gp4.googleusercontent.com:443 - DIRECT/74.125.235.11 -
1369434725.225 206257 192.168.1.120 TCP_MISS/200 8841 CONNECT gp5.googleusercontent.com:443 - DIRECT/74.125.235.10 -
1369434725.238 206268 192.168.1.120 TCP_MISS/200 8942 CONNECT gp3.googleusercontent.com:443 - DIRECT/74.125.235.12 -
1369434725.240   1096 192.168.1.120 TCP_MISS/204 452 GET http://s.youtube.com/stream_204? - DIRECT/74.125.235.40 text/html

plisss help
User avatar
q_p
Posts: 3109
Joined: 14 Oct 2012, 13:01
Contact:

Re: ask? Squid3 delaypool tidak jalan

Postby q_p » 25 May 2013, 06:24

...
saat di run block website jalan, tapi saat di tes delaypool dari client ternyata client tetap tidak terfilter padahal di access.log nya masuk
...

Apakah yang anda maksud dengan terfilter =
  • Situs2 yang harusnya terblokir, masih lolos ?
  • Client yang harusnya ter-limit BW, masih loss ?
Cobalah baca2 dulu, di sini banyak contoh squid.conf.
User avatar
elzein
Posts: 4
Joined: 15 May 2013, 08:54
Location: pasuruan, indonesia
Contact:

Re: ask? Squid3 delaypool tidak jalan

Postby elzein » 25 May 2013, 20:40

[quote=Pragola_Pati]
...
saat di run block website jalan, tapi saat di tes delaypool dari client ternyata client tetap tidak terfilter padahal di access.log nya masuk
...

Apakah yang anda maksud dengan terfilter =
  • Situs2 yang harusnya terblokir, masih lolos ?
  • Client yang harusnya ter-limit BW, masih loss ?
Cobalah baca2 dulu, di sini banyak contoh squid.conf.


untuk acl block situs jalan (situs yang harus di blokir sudah terblokir)
tapi untuk limit BW tidak jalan ( client yang seharusnya terlimit masih tidak terlimit BW)

udah coba modif pools_delay sampai bikin yang sesederhana kug masih tidak jalan, mohon bantuannya