All next steps are made on Debian 12.5.
- Check if we have older Squid versions.
dpkg -l | grep squidNOTE! Package version 5.7 has multiple vulnerabilities If Squid is installed, you can remove it using the following command:
sudo apt remove --purge squid squid-common squid-langpack- Install the necessary dependencies for compiling Squid from source:
sudo apt update
sudo apt install build-essential libssl-dev libpcre3-dev libcppunit-dev libsasl2-dev libxml2-dev libdb-dev libnetfilter-conntrack-dev libexpat1-dev libcap2-dev libltdl-devAdditionally, clean up any residual configuration files:
sudo apt autoremove
sudo apt clean- Download the Squid 6.10 source code from the official website https://www.squid-cache.org/Versions/v6/:
wget http://www.squid-cache.org/Versions/v6/squid-6.10.tar.gz
tar -xvf squid-6.10.tar.gz
cd squid-6.10- Run the
./configurescript to prepare the build environment. Customize the configuration options based on your needs.
./configure --prefix=/usr/local/squid --enable-ssl --enable-ssl-crtd --with-openssl --enable-icap-client --enable-follow-x-forwarded-for --enable-auth --with-pcre- Compile the Squid source code
make- Install the compiled Squid binaries:
make install - After installation, configure Squid as needed. The default configuration file is located at
/usr/local/squid/etc/squid.conf.
We will add a sample configuration:
http_port 3128
acl localnet src 192.168.1.0/24
http_access allow localnet
http_access deny all
- To manage Squid with systemd, create a service file
/etc/systemd/system/squid.service
[Unit]
Description=Squid Web Proxy Server
After=network.target
[Service]
Type=forking
ExecStart=/usr/local/squid/sbin/squid -f /usr/local/squid/etc/squid.conf
ExecReload=/usr/local/squid/sbin/squid -k reconfigure -f /usr/local/squid/etc/squid.conf
ExecStop=/usr/local/squid/sbin/squid -k shutdown -f /usr/local/squid/etc/squid.conf
PIDFile=/usr/local/squid/var/run/squid.pid
[Install]
WantedBy=multi-user.target
- Reload systemd to apply the changes and enable the Squid service:
sudo systemctl daemon-reload
sudo systemctl enable squid
sudo systemctl start squid- Troubleshoot - We will run Squid in debug mode to see output:
/usr/local/squid/sbin/squid -N -d9 -f /usr/local/squid/etc/squid.conf- We will fix this with chmod on squid dirs:
sudo chown -R nobody:nogroup /usr/local/squid/var/logs
sudo chmod -R 755 /usr/local/squid/var/logs
sudo chown -R nobody:nogroup /var/log/squid
sudo chmod -R 755 /var/log/squidWe will run Squid in debug mode again to see output:
/usr/local/squid/sbin/squid -N -d9 -f /usr/local/squid/etc/squid.confRun again and check status:
sudo systemctl start squid
sudo systemctl status squidInstall Squid to a Staging Directory:
Instead of installing directly to /usr/local/squid, install it to a staging directory that you can easily transfer:
make install DESTDIR=/tmp/squid-stagingThis will install Squid under /tmp/squid-staging/usr/local/squid.
-
Create a Compressed Archive of the staging directory:
cd /tmp tar -czvf squid-6.10-compiled.tar.gz squid-staging -
Transfer the Archive to the target machine using
scp,rsync, or any other file transfer method. For example, usingscp:scp /tmp/squid-6.10-compiled.tar.gz user@target-machine:/tmp
-
Extract the Archive on the target machine:
cd /tmp tar -xzvf squid-6.10-compiled.tar.gz -
Move the Extracted Files to the desired location:
sudo mv /tmp/squid-staging/usr/local/squid /usr/local/
-
Set Up Environment Variables (optional):
Add Squid's binary path to your
PATHenvironment variable for easier access. Edit your.bashrcor.bash_profile:export PATH=$PATH:/usr/local/squid/sbin
Edit the Squid configuration file at /usr/local/squid/etc/squid.conf to suit your needs. Then start and check using the guide above.