settingan squid di smoothwall express 3.0 versi diriku
biar gak lupa nih..untuk settingan squid di smoothwall express 3.0 bisa lewat webbasenya smoothwall, tapi kayaknya emang kurang puas ya..sedikit sekali field2 yang disediakan..jadi berasa kurang yakin..
akhirnya googling..eh..nemu kalo konfigurasi squidnya disimpan di direktori /var/smoothwall/proxy/squid.conf tapi bingung gmana cara ngerubahnya..kl lewat console di webnya smoothwall, kurang memuaskan, nyobain pake putty eh..gak bisa..ternyata port untuk ssh di smoothwall itu di 222 akhirnya pake putty..bisa juga masuk ke smoothwall boxku..
masuk kedirektori /var/smoothwall/proxy, tak coba langsung utak atik squid.conf, pas disimpan sih sukses, tapi waktu di restart router atopun restart squidnya..settingan yang dah diutak atik kok malah balik lagi ke yang sebelumnya…bete kan ?
jadi ingat di pfsense, kalo dia punya “sesuatu” yang membuat dia tiap di restart pasti balik lagi ke settingan originalnya dia..hehehe…tak cari kiri kanan..nemu juga nih file di direktori sama /var/smoothwall/proxy/acl, ternyata ini tempatnya…hehe….akhirnya tak utak atik di file acl, restart squid..bisa…lumayan..wus wus….
biar gak lupa, nanti kl ada apa2 tinggal copy paste ajah… heheh 
ssh -l root routerbox
#cd /var/smoothwall/proxy
#vi acl
cache_mem 16 MB
maximum_object_size_in_memory 32 KBcache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSFhalf_closed_clients off
cache_swap_high 100%
cache_swap_low 80%
ipcache_size 1024
ipcache_low 90
ipcache_high 95
fqdncache_size 1024shutdown_lifetime 10 seconds
icp_port 0acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERYcache_effective_user squid
cache_effective_group squidpid_filename /var/run/squid.pid
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log none
error_directory /usr/share/errors/English
log_mime_hdrs off
emulate_httpd_log off
log_ip_on_direct off
log_fqdn off
log_mime_hdrs off
log_icp_queries offclient_persistent_connections on
server_persistent_connections on
pipeline_prefetch onrefresh_pattern -i \.tar.gz$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.mp3$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.zip$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.png$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.gif$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.jpg$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.jpeg$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.swf$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.3gp$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.rm$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.wma$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.mpeg$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.(gif|jp?g|xbm|png|swf|bmp)$ 21600 90% 43200 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.(mov|avi|qtm|mp?)$ 21600 90% 43200 override-expire override-lastmod ignore-reload reload-into-ims
refresh_pattern -i \.(3gp|wmv|wma|mpg|mpeg|mpga|rm|rv|vgp)$ 21600 90% 43200 override-expire override-lastmod ignore-reload reload-into-ims
refresh_pattern -i \.(zip|exe|gz|Z|lha||rar|arj)$ 21600 90% 43200 override-expire override-lastmod ignore-reload reload-into-ims
refresh_pattern -i \.(hqx|pdf|rtf|doc|swf)$ 100000 500% 99000000 ignore-reload override-expire
refresh_pattern -i \.(inc|cab|ad|txt|)$ 100000 500% 99000000 ignore-reload override-expire
refresh_pattern ^http://www.friendster.com/.* 720 100% 4320 override-expire override-lastmod reload-into-ims
refresh_pattern ^http://photos.friendster.com/.* 720 100% 4320 override-expire override-lastmod reload-into-ims
refresh_pattern ^http://images.friendster.com/.* 720 100% 4320 override-expire override-lastmod reload-into-ims
refresh_pattern ^http://mail.yahoo.com/.* 720 100% 4320
refresh_pattern ^http://mail1.plasa.com/.* 720 100% 4320
refresh_pattern ^http://*.yahoo.*/.* 720 100% 4320 override-expire override-lastmod reload-into-ims
refresh_pattern ^http://*.google.*/.* 720 100% 4320
refresh_pattern ^http://*.friendster.*/.* 720 100% 4320 override-expire override-lastmod reload-into-ims
refresh_pattern ^http://*.doubleclick.*/.* 720 100% 4320 override-expire override-lastmod reload-into-ims
refresh_pattern ^http://www.yahoo.com/.* 720 100% 4320
refresh_pattern ^http://*.yimg.*/.* 720 100% 4320
refresh_pattern ^http://*.boleh.*/.* 720 100% 4320
refresh_pattern ^http://*.detik.*/.* 180 100% 4320
refresh_pattern ^http://*.detikinet.*/.* 180 100% 4320
refresh_pattern ^http://*.detikhot.*/.* 180 100% 4320
refresh_pattern ^http://*.detiportal.*/.* 180 100% 4320
refresh_pattern ^http://*.kompas.*/.* 180 100% 4320
refresh_pattern ^http://*.trans7.*/.* 720 100% 4320
refresh_pattern ^http://*.rcti.*/.* 720 100% 4320
refresh_pattern ^http://*.indosiar.*/.* 720 100% 4320
refresh_pattern ^http://*.kapanlagi.*/.* 720 100% 4320
refresh_pattern ^http://*.doubleclick.*/.* 720 100% 4320
refresh_pattern ^http://*.google-analytics.*/.* 720 100% 4320
refresh_pattern ^ftp: 10080 95% 241920 reload-into-ims override-lastmod
refresh_pattern . 180 95% 120960 reload-into-ims override-lastmodquick_abort_min 0 KB
quick_abort_max 0 KB
quick_abort_pct 100%forwarded_for off
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255acl SSL_ports port 445 443 441 563
acl Safe_ports port 80 # http
acl Safe_ports port 81 # smoothwall http
acl Safe_ports port 21 # ftp
acl Safe_ports port 445 443 441 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECTcache_mgr sepedabutut at yahoo.com
reload_into_ims on
pipeline_prefetch on
vary_ignore_expire on
memory_pools off
icp_hit_stale on
query_icmp ondelay_pools 1
delay_class 1 2
delay_parameters 1 128000/64000 40000/128000
delay_access 1 allow localnetgreen
delay_access 1 allow localhost
delay_access 1 deny allredirect_rewrites_host_header off
uri_whitespace strip
offline_mode offftp_passive on
ftp_sanitycheck oncache_dir diskd /var/spool/squid/cache2 8000 16 256
cache_dir diskd /var/spool/squid/cache3 8000 16 256
store_dir_select_algorithm round-robin
Comments (9)
maksih..tutorialnya….mas…saya mau nanya nih kok ngak ada maximum_objek_sizenya….udah tu..apakah cache dir udah otomatis tersimpan di cache1 dan dua apa kita tidak lagi harus membuat direktori khusus untuk cachenya.sperti di Ubuntu..makasih mas..kalau boleh minta ID ym nya
mas bingung nich, itu kan settingan acl nya.
terus untuk settingan squid nya gimana ?
apakah harus sama dengan settingan acl ?? tlong tutorialnya. tks
kalo di smoothwall settingan squid gak bisa langsung di utak atik di /var/smoothwall/proxy/squid.conf..soalnya pengalaman saya tiap kali di restart routernya..settingan yang udah kita buat tadi bakalan kembali ke settingan awal.
nah biar tiap ngerestart settingan gak berubah..file yang kita utak atik ya file /var/smoothwall/proxy/acl ..di file ini saya simpan settingan squid sesuai dgn yang kita mau..
mungkin begitu ya?? hehe..soalnya skrg gak pake smootwall..dah hijrah pake yang lain…
oOoOOO begitu ya….
btw kalau boleh tau skrng pakai apa ?
keunggulannya dengan smootwall apa ?
terima kasih
oh ya ada yang lupa, karna anehnya setelah saya pakai smootwall, PB ga isa, camfrog ga isa, chat pakai webcam ga isa + jaringan lokal (share data + printer) juga ga isa
help me………..
skrg saya pake ipfire cek aja di ipfire.org
kl gak bisa semuanya..cek aja di rule firewallnya..x aja diblok semua…
itu yang aku bingung ???
bisa ngasih sedikit penjelasan, soale newbie
waduh….gmana ya? soalnya interface smoothwall udah lupa euy….
coba aja cek di firewall..rule yang dipake apa nih?
saryo 6 October 2010 at 11:12
oh ya ada yang lupa, karna anehnya setelah saya pakai smootwall, PB ga isa, camfrog ga isa, chat pakai webcam ga isa + jaringan lokal (share data + printer) juga ga isa
help me………..
_________________________________________________________________________
coba di update aja pak..