Advertisement

SharingMatrix.com - Free, simple and fast file hosting!

Selasa, 08 Juni 2010

Instalasi squidguard di centos, filtering URL di squid

Di squid memungkinkan dilakukan filtering content, dimana ini bermaksud bahwa setiap user yaang akses internet melalui squid bisa dilakukan pemilahan/filtering website yang boleh dikunjungi.

Untuk memperoleh filtering yang berkinerja tinggi maka digunakan squidguard.

Adapun tahap instalasinya yaitu :

  1. Install software squid terlebih dahulu# yum install squid
  2. Install software database Oracle BerkelyDB, sebagai tempat menyimpan databasenya squidguard

    # wget http://download.oracle.com/berkeley-db/db-4.6.18.tar.gz
    # tar -xzf db-4.6.18.tar.gz
    # cd db-4.18.18
    # cd build_unix
    # ../dist/configure –prefix=/usr/local/berkeleydb –enable-cxx
    # make
    # make install
    # echo ‘/usr/local/berkelydb/lib/’ >> /etc/ld.so.conf
    # ldconfig

    BerkeleyDB akan diinstall di ‘/usr/local/berkeleydb’

  3. Download software Squidguard
    Squidguard sampai sekarang versi yang dirilis yaitu 1.4 , maka tahapan berikut yaitu download squidguard beserta patchnya (ada dua, yaitu untu bypass overflow dan bypass problem URL)

    # wget http://www.squidguard.org/Downloads/squidGuard-1.4.tar.gz
    # wget http://www.squidguard.org/Downloads/Patches/1.4/squidGuard-1.4-patch-20091015.tar.gz
    # wget http://www.squidguard.org/Downloads/Patches/1.4/squidGuard-1.4-patch-20091019.tar.gz

    extract squidguard dan pathnya, untuk patch di folder src

    # tar -xzf squidGuard-1.4.tar.gz
    # tar -xzf squidGuard-1.4-patch-20091015.tar.gz
    # tar -xzf squidGuard-1.4-patch-20091019.tar.gz
    # cp squidGuard-1.4-patch-20091015\*.* squidGuard-1.4\src
    # cp squidGuard-1.4-20091019\*.* squidGuard-1.4\src

  4. Install squidguard

    # cd squidGuard-1.4
    # ./configure –with-db=/usr/local/berkeleydb
    # make
    # make install

    5. SquidGuard akan terinstall di ‘/usr/local/squidGuard’

  5. Download blacklist database dari halaman http://www.squidguard.org/blacklists.htmlMisalnya diambil dara Shallalist.de
    # wget http://www.shallalist.de/Downloads/shallalist.tar.gz
    # tar -xzf shallalist.tar.gzSalin daftar black list ke ‘/usr/local/squidGuard/db’# mv BL/* /usr/local/squidGuard/db
  6. Atur konfigurasi squidGuard
    Sesuai yang ada di komumentasi squidGuard http://www.squidguard.org/Doc/configure.html
    Untuk konfik awal yang saya buat yaitu :

    #
    # CONFIG FILE FOR SQUIDGUARD
    #

    dbhome /usr/local/squidGuard/db
    logdir /usr/local/squidGuard/log

    #
    # DEFINISIKAN DATABASE BALCK LIST
    #

    dest adv {
    domainlist adv/domains
    urllist adv/urls
    }

    dest aggressive {
    domainlist aggressive/domains
    urllist aggressive/urls
    }

    dest alcohol {
    domainlist alcohol/domains
    urllist alcohol/urls
    }

    dest chat {
    domainlist chat/domains
    urllist chat/urls
    }

    dest dating {
    domainlist dating/domains
    urllist dating/urls
    }

    dest downloads {
    domainlist downloads/domains
    urllist downloads/urls
    }

    dest drugs {
    domainlist drugs/domains
    urllist drugs/urls
    }

    dest gamble {
    domainlist gamble/domains
    urllist gamble/urls
    }
    dest hacking {
    domainlist hacking/domains
    urllist hacking/urls
    }

    dest jobsearch {
    domainlist jobsearch/domains
    urllist jobsearch/urls
    }

    dest military {
    domainlist military/domains
    urllist military/urls
    }

    dest porn {
    domainlist porn/domains
    urllist porn/urls
    }

    dest sex {
    domainlist sex/lingerie/domains
    urllist sex/lingerie/urls
    }

    dest socialnet {
    domainlist socialnet/domains
    urllist socialnet/urls
    }

    dest spyware {
    domainlist spyware/domains
    urllist spyware/urls
    }

    dest tracker {
    domainlist tracker/domains
    urllist tracker/urls
    }

    dest violence {
    domainlist violence/domains
    urllist violence/urls
    }

    dest warez {
    domainlist warez/domains
    urllist warez/urls
    }

    dest weapons {
    domainlist weapons/domains
    urllist weapons/urls
    }

    dest webmail {
    domainlist webmail/domains
    urllist webmail/urls
    }

    dest webradio {
    domainlist webradio/domains
    urllist webradio/urls
    }

    dest webtv {
    domainlist webtv/domains
    urllist webtv/urls
    }

    #
    # DEFINISI ACL
    #

    acl {
    default {
    pass !adv !porn !warez !drugs !sex !hacking !alcohol all
    redirect http://localhost/block.html
    }
    }

  7. Ubah database blacklist mendajadi format .db (berkely DB) agar dapat diakses lebih cepat oleh squidGuard

    # squidGuard -c all

    Dalam tahapan ini akan sedikit memakan waktu, akan tetapi jika terlalu lama prosesnya (lebih dari 5 menit) maka cek log squidGuard kemungkinan ada error. Error yang saya alami kebanyakan salah nulis folder di konfigurasinya.

    Ubah file *.db menjadi milik user squid

    # chown -R squid /usr/local/squidGuard/db/*

  8. Aplikasikan squidGuard di squidTambahkan baris berikut di /etc/squid/squid.conf

    url_rewrite_program /usr/local/bin/squidGuard -c /usr/local/squidGuard/squidGuard.conf

  9. Tes
Diposting oleh Oci Parse di 20.26
Label:

Tidak ada komentar:

Posting Komentar

Langganan: Posting Komentar (Atom)