Squid wani matattarar matakin aikace-aikace ne wanda zai iya taimakawa kayan aiki. Squid shine uwar garken wakili na gidan yanar gizo wanda aka adana, yana da mashahuri kuma kyauta, kuma yana da hanyar wucewa. Kodayake ana iya amfani da shi don haɓaka aikin haɗin Intanet, ana iya amfani da shi don dalilan tsaro. Tun lokacin da aikin ya fara a cikin 90s, Squid ya ci gaba sosai kuma yanzu muna gabatar muku da shi don ku san yadda ake amfani da shi.
Don shigarku, zaka iya samun damar official website na aikin kuma zaɓi fakitin binary don tsarin aiki ko rarrabawa. Idan kana son girka shi daga kunshin lambar tushe ta tattarawa, suma kuna da wannan zaɓi. Kwallan kwallan da ake dasu sune tar.gz, tar.bz2, da tar.xz. Idan baku san yadda ake girka ba, zaku iya zuwa labarin da muke shiryawa a cikin wannan shafin game da yadda ake girka kowane kunshin daga Linux. ido! Idan kana da kayan Debian ko kuma ka ga an girka shi da sudo "apt-get install squid", za a iya samun kuskure, saboda dole ne ka maye gurbin "squid" da "squid3" don ya fara aiki .. .
Yanzu zamuyi aiki kai tsaye muna bayani wasu misalai na yadda ake amfani da Squid don kare kayan aikin mu. Kafin in so in bayyana cewa Squid ya dogara ne akan ACLs, ma'ana, a kan Lissafin Sarrafa Samun dama ko jerin ikon sarrafawa, ma'ana, ya lissafa dalla-dalla dalla-dalla izini don sarrafawa a wannan yanayin hanyar sadarwar ta gudana da aiwatar da matatun kwatankwacin na kayan masarufi amma a matakin aikace-aikace.
A yadda aka saba, bayan shigarwa, an haɗa fayil ɗin sanyi wanda za'a iya samu a ciki /etc/squid3/squid.conf kuma wannan shine wanda dole ne muyi gyara tare da edita kamar Nano ko gedit. A ciki zamu iya samar da dokokinmu na tacewa, kodayake akwai zaɓuɓɓuka cache_dir, cache_mem da http_port, zamuyi amfani da na ƙarshen don dokokinmu na tsaro. Wani bayani dalla-dalla shine cewa wannan fayil ɗin yana ƙayyade tashar tashar jiragen ruwa da sabis na Squid yayi amfani da shi, wanda ta tsoho shine 3128 (duba layi ko umarnin "http_port 3128" kuma cire # don kunna shi). Idan kana so zaka iya canza shi zuwa wata tashar jirgin ruwa kamar 8080 ... Kuma wani abu mai mahimmanci shine saita sunan mai masauki, nemi sharhin "TAG: Visible_hostname" kuma zaka ga layi "bayyane_hostname" inda dole ne ka sanya sunan mai masaukin ka.
Don sanin sunan mai masaukin ku, zaku iya bugawa a cikin m:
hostname
Kuma sunan da ya bayyana sai ka kara shi a layin da bai kamata # ya gabaci shi ba saboda kar a yi biris da shi azaman bayani. Wato, zai yi kama da wannan:
sunan da ake gani_ sunan gida_ wanda_kaine_ya bayyana
Idan kun ga fayil ɗin daidaitawa, za ku ga cewa an yi sharhi sosai, idan kanaso ka keta dokar da aka kirkira, zaka iya fara layi da # kuma kun canza shi zuwa tsokaci, wanda Squid yayi watsi dashi, don sanya shi cikin sabis, kuna share # kuma hakane. A zahiri, akwai dokoki da yawa da aka kirkira da sharhi waɗanda zaku iya amfani dasu ta cire #. Don haka bai kamata ku share kuma ku sake rubuta dokoki ba. Da kyau, don ƙara takamaiman doka ko tacewa, dole ne ta sami ACL da umarnin da ke nuna abin da za a yi.
Af, idan kun cire # don kunna doka, Tabbatar cewa baka barin sarari a farkon layin ba. Alal misali:
Hanyar da ba daidai ba:
http_port 3128
Madaidaici hanya:
http_port 3128
Ba ku ji komai ba? Da kyau kar ku damu, tare da Misali zaka ga komai yafi kyau. Yi tunanin wannan:
acl yana toshe url_regex azaman facebook
http_access musan toshewa
Me ma'anar wannan dokar shine cewa acl mai suna "toshewa" zai hana samun damar shiga adireshin da ya kunshi "facebook" (saboda haka idan muka yi kokarin shiga Facebook zai tsallake wani kuskure a cikin burauzar) Idan maimakon "musantawa" da kuka yi amfani da "kyale", kuna ba da damar shiga maimakon hana shi. Hakanan zaka iya amfani da! Don keɓewa, misali, a ce kana so ka ba da izinin damar zuwa jerin 1 amma ba jerin2 ba:
http_access allow lista1 !lista2
Wani misali na iya ƙirƙirar fayil / sauransu / squid3 / ips da aka yarda kuma a ciki adana jerin IPs waɗanda muke son ba da izinin shiga. Misali, a ce abubuwan ips din da aka yarda su ne:
192.168.30.1
190.169.3.250
192.168.1.26
Kuma a sa'an nan mun ƙirƙiri acl don ba da damar isa ga waɗannan IPs:
acl nuevaregla src "/etc/squid3/ipspermitidas"
Kyakkyawan misali mai amfaniKa yi tunanin cewa yara waɗanda shekarunsu ba su kai 18 ba suna amfani da kwamfutarka kuma kana so ka taƙaita samun wasu rukunin yanar gizan manya. Abu na farko shine ƙirƙirar fayil da ake kira / etc / squid3 / list tare da abun ciki:
adult
batsa
jima'i
fawa
Kuma yanzu a cikin squid.conf fayil Mun sanya doka mai zuwa:
acl denegados url_regex "/etc/squid3/lista" http_access allow !denegados
Kamar yadda kuka gani mun yi amfani da izini wanda a ka'ida shine bada izini, amma idan ka duba mun kara! ƙaryatãwa, sabili da haka, zai zama daidai da sanya:
acl denegados url_regex "/etc/squid3/lista" http_access deny denegados
Hakanan zaka iya ƙirƙirar jerin, ba kawai sunayen yanki ko IPs kamar yadda muka yi ba, Hakanan zaka iya sanya yankuna kuma misali takura samun dama ga yankuna kamar .xxx, .gov, da dai sauransu. Bari muyi la’akari da misali dangane da dokar data gabata. Mun ƙirƙiri fayil / sauransu / squid3 / yankuna waɗanda ke da:
.edu
.es
.org
Kuma yanzu mulkinmu, don hana samun dama ga jerin haramtattun rukunin yanar gizon da muka kirkira, amma bayar da damar shiga URLs tare da wadannan yankuna:
acl denegados url_regex "/etc/squid3/lista" acl permitidos dstdomain "/etc/squid3/dominios" http_access allow !denegados dominios
Ara:
Yi haƙuri, lokacin da na ga maganganun na fahimci hakan Na rasa babban abu. Na iyakance kaina ga sanya misalai na yadda ake amfani da shi kuma na manta da faɗin hakan don fara uwar garken Squid:
sudo service squid3 start
Kafin ta tashi da "/etc/init.d/squid farawa", amma yanzu dole ne kuyi amfani da wannan layin da na sanya. Kamar yadda fayil ɗin sanyi baya cikin /etc/squid/squid.conf, amma a cikin /etc/squid3/squid.conf. Yayi, da zarar an ƙirƙiri manufofin tacewa, kuma farawa da ita, dole ne mu saita mai binciken, misali, idan kuna amfani da Mozilla Firefox ko abubuwan banbanci, zaku iya zuwa menu na daidaitawa (kun sani, sanduna uku), sannan kuma zuwa Zaɓuɓɓuka, Na ci gaba, kuma a cikin hanyar hanyar sadarwa, danna kan Kanfigareshan a cikin sashin Haɗin. A can, za mu zaɓi sanyi na wakiltar Manual kuma mu sanya IP ɗinmu da tashar Squid tana amfani da su, a wannan yanayin 3128. Kuma zaɓi "Yi amfani da wakili ɗaya don komai" kuma fita don adana canje-canje.
Don Allah Kar ka manta da barin ra'ayoyin ku, shakku ko duk abin da kuke so ... Kodayake koyawa ne sama da Squid, ina fatan zai taimaka muku.
na gode !, mai taimako.
BAYA KYAUTA sosai don wani abu mai rikitarwa, Ina ci gaba da cewa "matakin mai amfani: matsakaici", ya kamata ku san wasu ra'ayoyi game da "hanyoyin sadarwa".
Ina HUMBLY na yi la’akari da cewa zaɓi don saita burauzar mu don amfani da “wakili” ya kamata a ƙara, amma da yake wannan shigarwar ta kasance “GABATARWA ga Squid”, za mu kasance da masaniya game da na gaba? isar da sako (a ƙarshe, kuma a cikin haɗarin ɓata mani rai, TUNA da kada ku "wakilta" shafukan yanar gizo na banki da / ko cibiyoyin kuɗi da kuke amfani da su a cikin gidanku ko kamfaninku).
Barka dai, na gode da bayanan. Ee, IPTABLES da Squid sunyi kauri sosai don yin labarin da zai bayyana su sosai kuma dole ne ku iyakance kanku wajen sanya misalai na yau da kullun ...
Amma kuna da gaskiya, na kara yanzu don daidaita wakili, na tsara shi kuma na manta. Laifi na.
Gaisuwa kuma mun gode !!
Uffff "akwati" yi haƙuri don rashin fahimtar babban abu:
FARA HIDIMAR :-( ba tare da hakan ba "babu wata innar ka"
{sanya shi a kowane taya shine ta gyaran "/ sbin / init":
http: // www. ubuntu-es.org/node/ 13012 # .Vsr_SUJVIWw}
{wata hanya mafi sauki ita ce amfani da "update-rc.d":
https: // parbaedlo. wordpress.com/201 3/03/07 / saita-farawa-da-tsayawa-na-ayyuka-Linux-sabunta-rc-d /}
Na kara sarari zuwa hanyoyin, cire su kuma zakuyi kewaya ;-)
MUNA GODIYA SOSAI DON HANKALIN KU.
LINUX LABARAI: Hari kan Mint ɗin Linux: sakawa masu shigar da abubuwa tare da daidaita shaidun masu amfani
http://www.muylinux.com/2016/02/21/ataque-a-linux-mint
Na riga na buga shi, amma kar a watsa waɗansu shafuka anan don Allah
LABARAI NA ANDROID: GM Bot, Trojan din Android wanda aka samu Mazar daga ciki
http://www.redeszone.net/2016/02/21/gm-bot-el-troyano-para-android-del-que-deriva-mazar/
Sannu Jimmy, Yaya zakuyi don kada squid ya nemo muku waɗancan shafuka? Zai zama da kyau idan kayi tsokaci game da zaɓi na bayyane, wanda zai guji ɓatancin daidaita wakili ga kowace kwamfuta
Kyakkyawan tambaya, Na sanya CAPTCHA a cikin software ta kyauta akan shafukan yanar gizo na abokan cinikina:
(http: // www. ks7000. net. ve / 2015/04/03 / un-captcha-sauƙaƙe-da-aiwatar -wa /
-Humily, BA "spam" bane ko tallata kai, ya dace-)
Kuma ina tunanin cewa lokacin amfani da Squid waɗannan hotunan ba a sake loda su ba saboda na sanya wannan suna a kansu -a, kuma zan iya samar da sunaye bazuwar, ban taɓa tunanin hakan ba, sai yanzu- kuma da samun suna iri ɗaya, Squid ya dawo da abin da yana cikin "ma'ajin".
Babu shakka babban aikin «wakili» shine adana bandwidth tare da hotunan - wadanda suka fi kowane nauyi a shafin yanar gizo- [i] a zaton cewa wadannan hotunan tsayayyu ne, basa canzawa kan lokaci, wanda hakan gaskiyane a cikin kashi 99% na shari’a [/ i].
Amma a cikin CAPTCHA, tunda "babu gudu", dole ne mu kawar da abin da ya gabata kuma koyaushe mu dawo da sabon hoto.
GAME DA BANKI, Na fahimci mafi girma a Spain shine «Caixa» saboda za mu ƙirƙiri ƙa'idar misali:
acl caixa dstdomain .lacaixa.es
ina:
acl -> umarni don ƙirƙirar mulki (sake karanta labarin Mr. Isaac, sakin layi na sama).
caixa -> sunan mulki.
dtsdomain -> "buga" zaɓi don nuna cewa muna nufin yanki, MUHIMMAN digo a farkon ( http://ww w. warware com / squid / squid24s1 / access_controls.php)
yanki (s) -> Ina tunanin cewa za mu iya ƙara yankuna da muke buƙata, rabu da sarari; yana magana akan sarari Na sanya su a cikin haɗin gidan yanar gizon da aka nuna, cire su kuma za ku yi amfani da su (shafuka a Turanci).
Ina fatan ilimin da aka gabatar a nan yana da amfani a gare ku, godiya ga LinuxAdictos!
KYAU, don amsa tambayar TRANSPARENCY a cikin Squid AGAIN nace cewa dole ne ku sami ilimin matsakaici kuma saboda dalilai masu ma'ana zan takaita gwargwadon yiwuwar labarin mai zuwa (a cikin Ingilishi) wanda nake ganin yayi magana sosai game da batun:
http: // ww w.deckle.co. uk / squid-users-guide /transparent-caching-proxy.html
Bayanan kula:
-Na kara sarari zuwa hanyoyin haɗin gwiwa don guje wa pingback daga gare ni (Ba ni da wata alaƙa da ƙungiyar). Linux Adictos, don haka ba ni da izinin aiwatar da aikin da aka ce).
- WANNAN GAME DA KARANTAWA BAN SANI BA! (Ba su koya mani ba, ina faɗi).
-Taimaka ku mutane ni ma na taimaki kaina, wannan yana da kyau a yawa! ?
Da kyau, tare da faɗin haka, bari mu sauka ga kasuwanci:
I JUST kawai na ba Mista Ishaƙu shawara don faɗaɗa kan daidaita masu bincikenmu tare da wakili da aka sanya kuma ya yi kyau sosai (wow, ina mutumin nan yake samun lokacin yin abubuwa da yawa haka?).
A karkashin wannan makircin, amfani da Squid NE ZABI: kowane mai amfani da cibiyar sadarwar yankin mu zai kasance mai kula da aikin su, amma zaka iya cinye «azurfa mai tsauri da pesetas na takarda» cewa akwai wasu 'bash script' da za a iya sanyawa . ta hanyar SSH zuwa kwamfutoci daban-daban masu gudana GNU / Linux.
SHARI'AH: cewa sabar mu ta Squid tana aiki kamar yadda Mista Isaac ya koyar a cikin wannan sakon, idan mun riga mun gwada shi kuma mun sanya "aikin aiki" akan sa kuma yana yin kyau, zamu iya ci gaba da zuwa gaba.
KARKASHIN HANYAR TRANSPARENCY:
FIRST.- Squid ɗin mu dole ne ya zama tsoffin hanyar "ƙofar" a cikin "eth0" ko "wlan0" - shin kuna tuna ilimin matsakaici? -, da kyau mun kafa shi a can (ana yin shi ta hanyar tsoho tare da DHCP SABODA haka dole ne mu ma saita sabar irin wannan sabis ɗin:
http: // en.wikipe dia.org/wiki/ Dynamic_Host_Configuration_Protocol).
Dole ne mu shirya don daidaitawa, idan akwai gazawa, juya duk hanyoyin zuwa modem (s) ɗin mu kai tsaye idan Squid - kwamfutar da take aiki - ta cika lodi da aikinta - kuma yi amfani da modem (s) nau'in "gada" ta yadda suna fita waje, ana samun wannan ta hanyar yin "rubutun" wanda ya haifar da abin da ya faru kuma ya daidaita sabarmu ta DHCP - wacce ya kamata a girka a wata kwamfutar daban da ta Squid-.
SAURARA: kwamfutarmu tare da Squid koyaushe zata dogara da adireshin IP ɗinta daga DHCP AMMA a lokaci guda zata sami wasu "iko" tare da sabar DHCP ɗin da aka ce. Idan kanaso kayi aiki da tsayayyun adiresoshin IP, na iko, zaka iya, amma idan ka kara wasu kwamfyutoci KO KA SAKA wasu sai ka sake saitawa kuma ba ra'ayin bane (karanta cikin farin ciki:
ht tps: // pheno barbital. wordpress.com/2012/07/23/the-12-dalilai -by-wace-a-administrator-of-systems-lazy-is-a-good-administrator/)
WANI LURA (duba abu na biyu): kayan aikin mu (s) da / ko na'ura mai ba da hanya tsakanin hanyoyin sadarwa dole ne su kashe aikin DHCP kuma ana sarrafa su ta sabarmu ta DCHP (- wanda nake baku tabbacin cewa wani shigowar ya fito daga wannan don nuna mana yadda hawa yake ya ce sabis-)
NA BIYU.- Dole ne mu tace zirga-zirga zuwa sabar Squid ɗinmu, wannan idan muna da magudanar hanyoyi da yawa waɗanda ke rufe yankin cibiyar sadarwar mara waya "wifi", har yanzu cibiyar sadarwar yanki ce amma tana da matsakaiciyar matsakaici. Ainihi daidai yake da batun farko AMMA idan muna da na'urori daban-daban KO KASAN subnets, dole ne mu saita su kuma, don haka ku yi hankali da waɗanda muke aiki "murkushe baƙin ƙarfe" a cikin manyan kamfanoni.
NA UKU - A cikin GNU / Linux ɗinmu wanda ke ɗaukar bakuncin Squid dole ne mu sake tura tashoshin jiragen ruwa da kuma saita «Firewall» (karanta labarin baya IPTables
http://www.linuxadictos.com/introduccion-a-iptables-configura-un-firewall-en-linux.html )
iptables -t nat -A GABATARWA -p TCP –darwa 80 -j GASKIYA –to-tashar 3128
kuma zuwa ga IPFW:
/ sbin / ipfw ƙara 3 fwd 127.0.0.1,3128 tcp daga kowane zuwa kowane 80
Ba lallai ba ne a faɗi, ba za mu iya tafiyar da sabar Apache ko Ngix a kan wannan tashar tashar 80 ba - tsoffin tashar yanar gizo na shafukan yanar gizo- SONSE SENSE NUNA ba a saka ƙarin kaya a kan kwamfutarmu tare da Squid -dependent on disk space for «cache» -.
NA HUDU - - Dole ne mu saita sabar Squid ɗinmu kuma mu gaya mata cewa tana aiki a wannan yanayin ta hanyar sauya "/etc/squid/squid.conf" tare da Nano ko editan da kuka fi so:
http_port 3128 m
Dole ne kuma mu kunna isar da fakiti a cikin "/etc/sysctl.conf":
net.ipv4.ip_forward = 1
net.ipv6.conf.all. gabatarwa = 1
Wannan layin na ƙarshe idan muna da IPv6, yana da kyau mu saita shi sau ɗaya a gaba.
A ƙarshe sake kunna sabis ɗin Squid kamar yadda Mista Isaac ya ba da shawara a sama kuma sake sake sabis ɗin cibiyar sadarwa:
/etc/init.d/procps.sh sake kunnawa
WASU IMANI NA ERRATA (ko kuma wasu maganganun banza a kaina) su sanar da ni ta wannan hanyar, ana maraba da sukar ku da tsokaci;
MR. ISAAC SHI NE MAI GASKIYA wanda zai sami kalma ta ƙarshe a cikin wannan "yaƙin."
A cikin wannan gajeriyar bidiyon zamu iya ganin yadda ake saita Mozilla don amfani da sabar wakili, banda cewa tana amfani da na'ura mai kama da ReactOS, amma gajere ne kuma ina tsammanin ita ILLUSTRAtes abin da kuke so ku saita a nan (haɗin mahaɗa tare da sarari, cire su da lilo):
ht tps: / / www. Youtube. com / agogo? v = st47K5t7s-Q
Yanzu haka na fara bin gidan rediyon ku, kwana 2 kenan .. kuma abun yayi dadi sosai ..
Gaisuwa daga Meziko .. (Ni malami ne kuma yashi na yashi shine inyi amfani da budewa)
Ina so ku taimake ni Ina so in ba da dama ga mai amfani don ganin Facebook kuma sauran suna tare da ƙuntatawa da aka riga aka tsara da kuma yadda za a taimaka wa masu amfani da Intanet a wasu lokuta Ina so ku ba ni shawara, na gode
Ari, abin da suka bayyana min a wannan batun shi ne cewa injin da kuke so ba a takura shi ba, dole ne a bar shi, amma har zuwa lokacin ina da bayani, ni kuma ban da masaniya a kan batun
Barka da dare, ka gafarceni, wataƙila tambayata tana da ɗan tushe amma hey, na girka squid kuma na saita shi akan cento 5.4, na girka giya da ultrasurf, abin da nayi niyyar yi shine raba yanar gizo daga ultrasurf tare da squid, ni ma nayi hakan a kan XP na windows windows tare da FreeProxy da ultrasurf kuma zan iya raba shi ba tare da matsala ba amma ban san yadda ake yin sa ba a cikin Linux
Na shawarce ku, Ina da tsari irin naku, a harkata na tura tashar jirgin ruwa 80 zuwa 8080 inda squid ke gudana. Matsalar ita ce wasu masu amfani suna barin wannan daidaitawa akan kwamfutocinsu, kuma suna samun dama ta tashar jirgin ruwa 80, kodayake ba duk sabis bane. Wannan tare da kayan aiki. Shin kuna da ra'ayin inda matsalar zata kasance?
Yana da amfani sosai kuma yayi bayani sosai. Godiya!
Ina da tambaya, lokacin da nake so in kirkiri acl, a ina zan yi shi, ma'ana, a wane layi na fayil ɗin daidaitawa? Kuma shin nan da nan zan sanya layuka 2 a ƙarƙashin umarnin http_access kamar yadda kuka nuna a cikin gidanku? Ko ina?
Godiya kuma !! Gaisuwa!