squid blok smua http...kcuali..

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
User avatar
danz0
Posts: 140
Joined: 19 Jan 2010, 12:37
Location: Suroboyo

squid blok smua http...kcuali..

Postby danz0 » 23 Sep 2010, 16:22

hai all
bantuin ya aq mw blok smua http pake squid kecuali untuk beberapa web berdasar domain dan IP

berikut potongan acl-nya
Tampilkan
#########
acl http_allow url_regex "/etc/squid/rules/http_allow.txt"
acl download url_regex -i xxxxxxxx

#acl numeric_IPs urlpath_regex ^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+
acl YIM_ports port 1644 5000 5001 5050 5150 8000 5101 1638 1614
acl YIM_domains dstdomain .yahoo.com .yahoo.co.jp
acl YIM_hosts dstdomain scs.msg.yahoo.com cs.yahoo.co.jp
acl YIM_methods method CONNECT
http_access allow YIM_methods YIM_ports YIM_hosts
http_access allow YIM_methods YIM_ports YIM_domains
# =============================
# DELAY POOLS
# =============================
delay_pools 2
# aturan 1, tidak ada shape
delay_class 1 2
delay_parameters 1 -1/-1 -1/-1
delay_access 1 allow all
delay_access 1 allow boz
delay_access 1 deny download

# aturan 2, setelah 2048000 b jadi 2000 b/s
delay_class 2 2
delay_parameters 2 -1/2048000 2000/2049000
delay_access 2 allow download
delay_access 2 deny all

http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny BADPORTS
http_access deny VIRUS

##########
acl kantor src 192.168.10.1-192.168.10.49/255.255.255.255
acl boz src 192.168.10.50-192.168.10.70/255.255.255.255 # IT & boss

http_access allow kantor !http_allow
http_access allow boz
http_access allow localhost
deny_info err_blocked http_allow
http_access deny all
http_reply_access allow all
icp_access allow kantor
icp_access allow localhost
icp_access deny all
always_direct deny all
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all


sedangkan isi /etc/squid/rules/http_allow.txt
Tampilkan
.yahoo.com
.mail.yahoo.com
.id.yahoo.com
.gmail.com
.klikbca.com
.mandiri.com
.bankmandiri.co.id
.bri.co.id
.ib.bri.co.id


tapi untuk akses web yg di allow ko masi sering gagal ya
terutama untuk mail yahoo dan file transfer di YM
ada saran?
thxB4
User avatar
danz0
Posts: 140
Joined: 19 Jan 2010, 12:37
Location: Suroboyo

Re: squid blok smua http...kcuali..

Postby danz0 » 25 Sep 2010, 15:19

sekarang file transfer sudah lancar..
cuman sampe sekarang belum bisa akses mail yahoo
solusi sementara saya pake mail yahoo versi mobile..
bantuin dunk...:D

Return to “Ubuntu Server”

Who is online

Users browsing this forum: No registered users and 10 guests