Fedora 30
Sponsored Link

Squid : Reverse Proxy Setting
2019/05/14
 
Configure Squid as a Reverse Proxy Server.
[1]
[2] Configure Squid.
[root@prox ~]#
vi /etc/squid/squid.conf
# line 57: add (allow all http access)

http_access allow all

# And finally deny all other access to this proxy
http_access deny all
# line 63: specify the backend Web server

#
http_port 3128
http_port 80 accel defaultsite=www.srv.world
https_port 443 accel defaultsite=www.srv.world cert=/etc/letsencrypt/live/prox.srv.world/fullchain.pem key=/etc/letsencrypt/live/prox.srv.world/privkey.pem
# line 66: uncommnet

# number means ⇒ [disk cache size] [number of directories on top level] [number of directories on 2nd level]

cache_dir ufs /var/spool/squid 100 16 256
# add to the end

cache_peer www.srv.world parent 80 0 no-query originserver
# memory cache size

cache_mem 256 MB
# define hostname

visible_hostname prox.srv.world
[root@prox ~]#
systemctl start squid

[root@prox ~]#
systemctl enable squid

[3] If Firewalld is running, allow HTTP/HTTPS service.
[root@prox ~]#
firewall-cmd --add-service={http,https} --permanent

success
[root@prox ~]#
firewall-cmd --reload

success
[4] Change settings of DNS or Routers in your LAN if need to listen HTTP/HTTPS access on Squid, then try to access to Squid Reverse Proxy Server from a ClientPC with Web browser like follows.
Matched Content