Shenzhen letter lion squid proxy technology

Others 2020-04-08 09:26:09 views: null

First, agents classification
1), the traditional agent
suitable for external network access to internal network, the client needs to set the proxy IP and port

Here Insert Picture Description
2), a transparent proxy
applies to internal network access outside the network, the client only need to set the gateway, the gateway is a proxy server
Here Insert Picture Description
3), reverse proxy
applies to the external network access within the network to achieve load balancing
Here Insert Picture Description

Second, the traditional agency set up and configuration
1, modifying the master configuration file
vim /etc/squid/squid.conf
will http_access deny all changed All the allow http_access
2, open service
Squid
3, client settings - proxy browser settings
4 test
after the client access, view access to records in web server, make sure IP access

Third, the transparent proxy configuration
1, modifying the master configuration file
vim /etc/squid/squid.conf
will change http_access deny all http_access allow all
the http_port 3128 changed within http_port network IP: 3128 transparent
2, restart the service
killall -9 squid && Squid
3, write firewall rules
to open port redirection
area firewall-- defined inside and outside the network card is located - the locale where the internal network adapter port redirection - will be redirected to the native port 80 3128 port
4, client settings - gateway at within a proxy server NIC IP
5, the test
client after accessing, viewing access to records in web server, make sure IP access

Fourth, the reverse proxy configuration
1, modifying the master configuration file
vim /etc/squid/squid.conf
the http_access deny all into the allow All the http_access
Http_port 192.168.1.88:80 Accel Vhost
the cache_peer 192.168.1.80 0 80 originserver parent name = siNA
the cache_peer 192.168.1.80 parent 80 0 originserver name = baidu

cache_peer specified backend server address, port 80 is a back-end services, is 0 (when using multiple Squid) ICP port number, originserver specified resource server, name specifies an alias

2, Kai restart service
killall -9 && Squid Squid
3, test
outside clients to access the proxy server interface after IP, see the web server access log, confirm access IP

drrui520
Published 29 original articles · won praise 0 · Views 586
Private letter concerns

Guess you like

Origin blog.csdn.net/drrui520/article/details/105209766
Recommended
TIOBE May list: Fortran “resurrected” into Top 10
GCC 14.1 released
Ranking
B. Little Girl and Game【1300 / 回文字符串 博弈论】
CIKERS Shane 20190613
"Javascript advanced programming" study notes - the constructor and prototype
beeline hiveserver2 start
springboot - Automatically backup mysql data every day
Data Storage Full Solution--Detailed Persistence Technology
Detailed Explanation of Spring Web MVC DispatcherServlet—Official Original
TCP / IP protocol layers structure and function
Command type literal pos: unknown; Fallback type literal pos: unknown] with root cause
Design of multifunctional curtain controller with indoor anti-theft alarm
Daily
More
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)

Code World

© 2018 codetd.com