I just curios about Proxy, so i will install Squid for Proxy Server & Connect it to client
apt update -y
apt install -y squid
In our case, we use 192.168.56.0/24 for allowing connection to our Proxy server.
cp /etc/squid/squid.conf /etc/squid/squid.conf.bak
nano /etc/squid/squid.conf
# Example Squid configuration with basic authentication
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#
include /etc/squid/conf.d/*
# Basic authentication setup
auth_param basic program /usr/lib/squid/basic_ncsa_auth /etc/squid/passwords
auth_param basic realm proxy
# ACLs (Access Control Lists)
acl authenticated proxy_auth REQUIRED # Require authentication for proxy users
acl localnet src 192.168.56.0/24 # Define your subnet, in this case are 192.168.56.0/24 as local network
# Access rules
http_access allow localhost # Allow access from localhost
http_access allow localnet # Allow access from the local network (192.168.56.0/24)
http_access allow authenticated # Allow access to authenticated users
http_access deny all # Deny access to everything else
# HTTP port configuration
http_port 3128
# Logging options (optional, adjust as needed)
access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
# Cache directory configuration (optional, adjust as needed)
cache_dir ufs /var/spool/squid 100 16 256
cache_mem 256 MB
# DNS settings (optional, adjust as needed)
dns_v4_first on
# Timeout and other network options (optional)
request_timeout 5 minutes
connect_timeout 30 seconds
# Error page customization (optional, adjust as needed)
error_directory /usr/share/squid/errors/English
# Refresh patterns (optional, adjust as needed)
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
apt install apache2-utils
- Generate Password
sudo htpasswd -c /etc/squid/passwords your_squid_username
sudo htpasswd /etc/squid/passwords your_squid_username
- Get Password
sudo cat /etc/squid/passwords
- Change Permission
ps aux | grep squid
sudo chown proxy:proxy /etc/squid/passwords
sudo chmod 640 /etc/squid/passwords
systemctl restart squid
curl -v -x http://your_squid_username:your_squid_password@your_server_ip:3128 https://www.google.com/
- Goals output
Output
* Trying 138.197.103.77...
* TCP_NODELAY set
* Connected to 138.197.103.77 (138.197.103.77) port 3128 (#0)
* allocate connect buffer!
* Establish HTTP proxy tunnel to www.google.com:443
* Proxy auth using Basic with user 'sammy'
> CONNECT www.google.com:443 HTTP/1.1
> Host: www.google.com:443
> Proxy-Authorization: Basic c2FtbXk6c2FtbXk=
> User-Agent: curl/7.55.1
> Proxy-Connection: Keep-Alive
>
< HTTP/1.1 200 Connection established
<
* Proxy replied OK to CONNECT request
* CONNECT phase completed!
nano /root/.bashrc
nano /etc/environment
http_proxy="http://proxy-server-address:port"
https_proxy="http://proxy-server-address:port"
ftp_proxy="http://proxy-server-address:port"
no_proxy="localhost,127.0.0.1,::1"
sudo su
remote vpn_server_ip vpn_port tcp
http-proxy proxy_IP proxy_port auto
connect-retry-max 1
auth-nocache
<http-proxy-user-pass>
user
pass
</http-proxy-user-pass>
mkdir /etc/systemd/system/docker.service.d
nano /etc/systemd/system/docker.service.d/http-proxy.conf
[Service]
Environment="HTTP_PROXY=http://proxy.example.com:80/"
Environment="HTTPS_PROXY=http://proxy.example.com:80/"
Environment="NO_PROXY=localhost,127.0.0.0/8,docker-registry.somecorporation.com"
sudo systemctl daemon-reload
sudo systemctl show --property Environment docker
sudo systemctl restart docker
docker run -e http_proxy="http://your.proxy.server:port/" -e https_proxy="https://your.proxy.server:port/" -e no_proxy="localhost,127.0.0.1,.yourcompany.com" your-image