Squid : Configure Reverse Proxy2023/03/07 |
|
Configure Squid as a Reverse Proxy Server.
|
|
| [1] | |
| [2] | Configure Squid. |
|
[root@dlp ~]#
vi /etc/squid/squid.conf # line 55 : add (allow all http access) http_access allow all # And finally deny all other access to this proxy http_access deny all # line 60 : specify the backend Web server # http_port 3128
http_port 80 accel defaultsite=node01.srv.world
https_port 443 accel defaultsite=node01.srv.world cert=/etc/letsencrypt/live/dlp.srv.world/fullchain.pem key=/etc/letsencrypt/live/dlp.srv.world/privkey.pem # line 64 : uncommnet # number means ⇒ [disk cache size] [number of directories on top level] [number of directories on 2nd level] cache_dir ufs /var/spool/squid 100 16 256 # add to the end cache_peer node01.srv.world parent 80 0 no-query originserver
# memory cache size cache_mem 256 MB
# define hostname visible_hostname dlp.srv.world
systemctl enable --now squid |
| [3] | If Firewalld is running, allow HTTP/HTTPS services. |
|
[root@dlp ~]# firewall-cmd --add-service={http,https} success [root@dlp ~]# firewall-cmd --runtime-to-permanent success |
| [4] | Change settings of DNS or Routers in your local network if need to listen HTTP/HTTPS access on Squid, then try to access to Squid Reverse Proxy Server from a Client Computer with Web browser. |
|
Matched Content