squid blok smua http...kcuali..

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
User avatar
danz0
Posts: 140
Joined: 19 Jan 2010, 12:37
Location: Suroboyo

squid blok smua http...kcuali..

Postby danz0 » 23 Sep 2010, 16:22

hai all
bantuin ya aq mw blok smua http pake squid kecuali untuk beberapa web berdasar domain dan IP

berikut potongan acl-nya
[spoiler]#########
acl http_allow url_regex "/etc/squid/rules/http_allow.txt"
acl download url_regex -i xxxxxxxx

#acl numeric_IPs urlpath_regex ^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+
acl YIM_ports port 1644 5000 5001 5050 5150 8000 5101 1638 1614
acl YIM_domains dstdomain .yahoo.com .yahoo.co.jp
acl YIM_hosts dstdomain scs.msg.yahoo.com cs.yahoo.co.jp
acl YIM_methods method CONNECT
http_access allow YIM_methods YIM_ports YIM_hosts
http_access allow YIM_methods YIM_ports YIM_domains
# =============================
# DELAY POOLS
# =============================
delay_pools 2
# aturan 1, tidak ada shape
delay_class 1 2
delay_parameters 1 -1/-1 -1/-1
delay_access 1 allow all
delay_access 1 allow boz
delay_access 1 deny download

# aturan 2, setelah 2048000 b jadi 2000 b/s
delay_class 2 2
delay_parameters 2 -1/2048000 2000/2049000
delay_access 2 allow download
delay_access 2 deny all

http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny BADPORTS
http_access deny VIRUS

##########
acl kantor src 192.168.10.1-192.168.10.49/255.255.255.255
acl boz src 192.168.10.50-192.168.10.70/255.255.255.255 # IT & boss

http_access allow kantor !http_allow
http_access allow boz
http_access allow localhost
deny_info err_blocked http_allow
http_access deny all
http_reply_access allow all
icp_access allow kantor
icp_access allow localhost
icp_access deny all
always_direct deny all
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all[/spoiler]

sedangkan isi /etc/squid/rules/http_allow.txt
[spoiler].yahoo.com
.mail.yahoo.com
.id.yahoo.com
.gmail.com
.klikbca.com
.mandiri.com
.bankmandiri.co.id
.bri.co.id
.ib.bri.co.id[/spoiler]

tapi untuk akses web yg di allow ko masi sering gagal ya
terutama untuk mail yahoo dan file transfer di YM
ada saran?
thxB4
User avatar
danz0
Posts: 140
Joined: 19 Jan 2010, 12:37
Location: Suroboyo

Re: squid blok smua http...kcuali..

Postby danz0 » 25 Sep 2010, 15:19

sekarang file transfer sudah lancar..
cuman sampe sekarang belum bisa akses mail yahoo
solusi sementara saya pake mail yahoo versi mobile..
bantuin dunk...:D

Who is online

Users browsing this forum: No registered users and 10 guests