LOG LUSCA TIDAK MUNCUL SESUAI DENGAN IP LOKAL

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
User avatar
sigaret
Posts: 31
Joined: 04 Feb 2013, 13:08
Location: Bandung
Contact:

LOG LUSCA TIDAK MUNCUL SESUAI DENGAN IP LOKAL

Postby sigaret » 18 Jul 2013, 14:17

Siang para suhu FUI

Ane punya kasus ni

2 minggu kamren kan ane nerapin subeting ni di kantor kami
nah untuk log yang tampil di lusca nya qo yang muncul malah gateway si proxy bukan ip baru yang ane pasang ??

untuk ip network yang ane pasang
192.168.4.96/27
192.168.4.224/28

Tampilkan
cache_access_log /var/log/lusca/access.log
cache_log /var/log/lusca/cache.log
cache_store_log /var/log/lusca/store.log
#=============================================
# DNS and FTP option
#=============================================
#I used DNSAMSQ service for fast dns resolving
#so install by using "apt-get install dnsmasq" first
dns_nameservers 192.168.2.1,202.138.224.4
ftp_user anonymous@
ftp_list_width 32
ftp_passive on
ftp_sanitycheck on
#=============================================
# Access Control List (ACL) Option
#=============================================
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl localnet src 192.168.0.0/24 #test
acl LOKAL src 192.168.1.0/24 #lokal
acl WIFI src 192.168.100.0/24 #wifi
acl PROXY src 192.168.10.0/24 #proxy
acl CAM src 192.168.3.0/24 #cam
acl OFFICE5 src 192.168.4.96/27 #lokal
acl PAJAK src 192.168.4.224/28 #lokal
acl OFFICE4 src 192.168.4.64/28 #lokal
acl GUEST src 192.168.4.240/29 #lokal
acl SSL_ports port 443 563 # https, snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
#acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
acl porn url_regex "/etc/lusca/blok.txt"
http_access deny porn

http_access allow all
http_reply_access allow all
icp_access allow all

#=============================================
# Deny Port
#=============================================
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports


#=============================================
# Allow Ports
#=============================================
http_access allow localnet
http_access allow PROXY
http_access allow WIFI
http_access allow LOKAL
http_access allow CAM
http_access allow OFFICE4
http_access allow PAJAK
http_access allow OFFICE5
http_access allow GUEST

#http_access deny all

#=============================================
# Administrative Parameters
#=============================================
# I used Ubuntu Server so user and group is proxy
cache_effective_user proxy
cache_effective_group proxy
cache_mgr ubuntucontrib@gmail.com
visible_hostname proxy.precise.net
unique_hostname ubuntucontrib@gmail.com
#=============================================
# Accelerator Options
#=============================================
half_closed_clients off
quick_abort_min 0 KB
quick_abort_max 0 KB
vary_ignore_expire on
reload_into_ims on

memory_pools off
cache_swap_low 98%
cache_swap_high 99%
max_filedescriptors 65536
fqdncache_size 16384
retry_on_error on
offline_mode off
pipeline_prefetch on
# If you want to hide your proxy machine from being detected at various site use following
via off
#=============================================
# Options Which Affect The Cache Size
#=============================================
# If you have 4GB memory in Squid box, we will use formula of 1/3
# You can adjust it according to your need. IF squid is taking too much of RAM
# Then decrease it to 128 MB or even less.
cache_mem 8 MB
minimum_object_size 0 bytes
maximum_object_size 2048 MB
maximum_object_size_in_memory 32 KB
#=============================================
# SNMP , if you want to generate graphs for -
# SQUID via MRTG
#=============================================
#acl snmppublic snmp_community gl
#snmp_port 3401
#snmp_access allow snmppublic all
#snmp_access allow all
#=============================================
# ZPH Option
#=============================================
#tcp_outgoing_tos 0x30 all
zph_mode tos
zph_local 0x30
zph_parent 0
zph_option 136


[img:center]http://img801.imageshack.us/img801/337/vyvt.jpg[/img]

mungkin para suhu bisa mejelaskan mengapa bisa terjadi demikian ???

Terima kasih atas Perhatiannya
User avatar
q_p
Posts: 3109
Joined: 14 Oct 2012, 13:01
Contact:

Re: LOG LUSCA TIDAK MUNCUL SESUAI DENGAN IP LOKAL

Postby q_p » 18 Jul 2013, 17:28

Masak masalahnya ada di bagian eksekusi acl http_access dan/atau loopback ??
  • acl http_access coba seperti ini

    Code: Select all

    http_access deny porn
    http_access allow manager localhost
    http_access deny manager
    http_access allow purge localhost
    http_access deny purge
    http_access deny !Safe_ports
    http_access deny CONNECT !SSL_ports
    http_access allow localnet
    http_access allow PROXY WIFI LOKAL CAM OFFICE4 PAJAK OFFICE5 GUEST
    http_access deny all

    http_reply_access allow all
    icp_access allow all
  • Jika tidak ada perubahan, tambahkan di bawahnya

    Code: Select all

    #loopback
    follow_x_forwarded_for allow localhost
    always_direct allow all
  • Test dengan browsing dari kompi yang masuk dalam sub-net 192.168.4.224/28 --(192.168.0.225 - 192.168.0.238 -betul tdk ya ?)--, misalnya kompi yang ber-ip 192.168.0.225 . Kemudian lihat access.log-nya =

    Code: Select all

    cat /var/log/squid/access.log | grep "192.168.0.225"
User avatar
sigaret
Posts: 31
Joined: 04 Feb 2013, 13:08
Location: Bandung
Contact:

Re: LOG LUSCA TIDAK MUNCUL SESUAI DENGAN IP LOKAL

Postby sigaret » 19 Jul 2013, 12:57

Pragola_Pati wrote:Masak masalahnya ada di bagian eksekusi acl http_access dan/atau loopback ??
  • acl http_access coba seperti ini

    Code: Select all

    http_access deny porn
    http_access allow manager localhost
    http_access deny manager
    http_access allow purge localhost
    http_access deny purge
    http_access deny !Safe_ports
    http_access deny CONNECT !SSL_ports
    http_access allow localnet
    http_access allow PROXY WIFI LOKAL CAM OFFICE4 PAJAK OFFICE5 GUEST
    http_access deny all

    http_reply_access allow all
    icp_access allow all
  • Jika tidak ada perubahan, tambahkan di bawahnya

    Code: Select all

    #loopback
    follow_x_forwarded_for allow localhost
    always_direct allow all
  • Test dengan browsing dari kompi yang masuk dalam sub-net 192.168.4.224/28 --(192.168.0.225 - 192.168.0.238 -betul tdk ya ?)--, misalnya kompi yang ber-ip 192.168.0.225 . Kemudian lihat access.log-nya =

    Code: Select all

    cat /var/log/squid/access.log | grep "192.168.0.225"


mass pragola kalo pake http_accessnya seperti yang mas kasih jadi denied semua access nya,jadi ga saya rubah http_access nya ..

terus saya tambahanin ini
[*]Jika tidak ada perubahan, tambahkan di bawahnya

Code: Select all

#loopback
follow_x_forwarded_for allow localhost
always_direct allow all


di bawah
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports


hasilnya tetep ga muncul mas, kenapa ya ?
User avatar
q_p
Posts: 3109
Joined: 14 Oct 2012, 13:01
Contact:

Re: LOG LUSCA TIDAK MUNCUL SESUAI DENGAN IP LOKAL

Postby q_p » 19 Jul 2013, 22:17

Bagian ini anda sederhanakan. Tidak perlu terlalu rinci pengelompokannya=

Code: Select all

acl localnet src 192.168.0.0/24 #test
acl LOKAL src 192.168.1.0/24 #lokal
acl WIFI src 192.168.100.0/24 #wifi
acl PROXY src 192.168.10.0/24 #proxy
acl CAM src 192.168.3.0/24 #cam
acl OFFICE5 src 192.168.4.96/27 #lokal
acl PAJAK src 192.168.4.224/28 #lokal
acl OFFICE4 src 192.168.4.64/28 #lokal
acl GUEST src 192.168.4.240/29 #lokal

Return to “Ubuntu Server”

Who is online

Users browsing this forum: No registered users and 5 guests