{"id":70,"date":"2012-08-23T22:22:00","date_gmt":"2012-08-23T22:22:00","guid":{"rendered":"https:\/\/www.tech-and-dev.com\/blog\/2012\/08\/23\/turning-your-server-into-a-proxy-using-squid\/"},"modified":"2021-02-22T01:19:40","modified_gmt":"2021-02-22T01:19:40","slug":"turning-your-server-into-proxy-using-squid","status":"publish","type":"post","link":"https:\/\/www.tech-and-dev.com\/blog\/2012\/08\/turning-your-server-into-proxy-using-squid.html","title":{"rendered":"Turning your server into a proxy using Squid"},"content":{"rendered":"
<\/div>\n
Squid is a fully-featured HTTP\/1.0 proxy. Squid offers a rich access control, authorization and logging environment to develop web proxy and content serving applications.<\/div>\n

\u00a0<\/span><\/h2>\n

\u00a0<\/span><\/h2>\n

\u00a0<\/span><\/h2>\n

Installing Squid<\/span><\/h2>\n

To install squid on CentOS, use yum install command (you must be logged in as root (If you’re not familiar with yum and root access, you might want to check the following topic first: 15 most used linux commands and how to use them<\/a>)):<\/p>\n

yum install squid<\/span><\/div>\n

 <\/p>\n

If you can’t install squid using yum, you can download it from http:\/\/www1.dk.squid-cache.org\/Versions\/ using wget command (how to use wget<\/a>)<\/div>\n
Next you have to extract the compressed archive file and change the working directory to the squid directory:<\/div>\n
tar -xvzf squid-*-src.tar.gz
\ncd squid -*<\/div>\n

Now enter the following commands in order to configure, compile and install squid<\/p>\n

.\/configure
\nmake
\nmake install<\/div>\n

This by default, will install it in “\/usr\/local\/squid”.
\nType .\/configure –help<\/b> to view all available options.<\/p>\n

 <\/p>\n

Configuring Squid<\/span><\/h2>\n

In order to configure squid, we open the squid configuration file located in \/etc\/squid<\/p>\n

vi \/etc\/squid\/squid.conf<\/div>\n

By default, squid will listen on port 3128, to make it listen on port 3128, 8080 and port 2083, we add the following:<\/p>\n

http_port 3128
\nhttp_port 2083
\nhttp_port 8080<\/div>\n

or if you want to define an IP to listen to instead of all IPs, replace YOUR_SERVER_IP by your server IP:<\/p>\n

http_port YOUR_SERVER_IP:3128
\nhttp_port YOUR_SERVER_IP:2083
\nhttp_port YOUR_SERVER_IP:8080<\/div>\n

 <\/p>\n

By default all the http access are denied. The ACL rules must be modified to allow access only to trusted users or all users. This is important if you don’t want everyone to use your proxy server and eventually consume resources.<\/div>\n

To allow everyone to access and use the proxy server, append the following line to the configuration file:<\/p>\n

http_access allow all<\/div>\n

(make sure to remove the line http_access deny all<\/b> for the above to work)<\/p>\n

To allow a range of IPs instead of allowing everyone, add the following command<\/p>\n

acl my_ranged_ips src 1.2.3.1-1.2.3.254\/24
\nhttp_access allow my_ranged_ips
\nhttp_access deny all<\/div>\n

 <\/p>\n

Make sure that http_access deny all <\/b>is the last statement, this is because the ACLs are checked from top to bottom. Users with IPs in the range of my_ranged_ips will be allowed to use the server, anyone else falls through to the “deny all” and gets a failure message.<\/div>\n

Once the configurations are done, restart squid:<\/p>\n

service squid restart<\/div>\n

To stop squid<\/p>\n

service squid stop<\/div>\n

To start squid<\/p>\n

service squid start<\/div>\n

Any comments, questions or suggestions? Post below!<\/b><\/p>\n

 <\/p>\n","protected":false},"excerpt":{"rendered":"

Squid is a fully-featured HTTP\/1.0 proxy. Squid offers a rich access control, authorization and logging environment to develop web proxy and content serving applications. \u00a0 \u00a0 \u00a0 Installing Squid To install squid on CentOS, use yum install command (you must be logged in as root (If you’re not familiar with yum and root access, you […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[88,31,89],"tags":[],"class_list":["post-70","post","type-post","status-publish","format-standard","hentry","category-proxy","category-server","category-squid"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/posts\/70","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/comments?post=70"}],"version-history":[{"count":4,"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/posts\/70\/revisions"}],"predecessor-version":[{"id":394,"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/posts\/70\/revisions\/394"}],"wp:attachment":[{"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/media?parent=70"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/categories?post=70"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.tech-and-dev.com\/blog\/wp-json\/wp\/v2\/tags?post=70"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}