User Tools
networking:linux:qlproxy
This is an old revision of the document!
Table of Contents
Quinto Labs Content Security
Web filtering for the Squid proxy
Howto
Installation
Install Requirements
yum install wget system-config-firewall-tui squid httpd php chkconfig squid on service squid start chkconfig httpd on service httpd start
Configure Firewall
Open HTTP (80), HTTPS (443) and add a custom port 3128 (tcp protocol).
system-config-firewall-tui
Install QuintoLabs Content Security
wget http://www.quintolabs.com/qlproxy/binaries/1.4.2/qlproxy-1.4.2-32d12.i386.rpm yum --nogpgcheck localinstall qlproxy-1.4.2-32d12.i386.rpm
Selinux
Configure Squid
vi /etc/squid/squid.conf http_access allow localnet #verify exists acl localnet src 192.168.0.0/16 #verify exists visible_hostname proxy icap_enable on icap_preview_enable on icap_preview_size 4096 icap_persistent_connections on icap_send_client_ip on icap_send_client_username on icap_service qlproxy1 reqmod_precache bypass=0 icap://127.0.0.1:1344/reqmod icap_service qlproxy2 respmod_precache bypass=0 icap://127.0.0.1:1344/respmod adaptation_access qlproxy1 allow all adaptation_access qlproxy2 allow all
Restart Squid proxy:
service squid restart
Configure Web Server
cat << EOF >> /etc/httpd/conf.d/qlproxy.conf
#
# This is /etc/httpd/conf.d/qlproxy.conf
#
Alias /qlproxy /var/opt/quintolabs/qlproxy/www
<Directory /var/opt/quintolabs/qlproxy/www >
Options FollowSymLinks
AllowOverride None
</Directory>
EOF
networking/linux/qlproxy.1324765641.txt.gz · Last modified: 2011/12/24 15:27 by gcooper
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
