Squid : Configure Reverse Proxy2026/06/04 |
|
Configure Squid as a Reverse Proxy Server. |
|
| [1] |
Get SSL Certificate to receive HTTPS access, too, refer to here. |
| [2] | Configure Squid. |
|
root@dlp:~#
vi /etc/squid/squid.conf # line 1623 : add (allow http access all) http_access allow all # And finally deny all other access to this proxy http_access deny all # line 2153 : change like follows (specify backend Web server for defaultsite) #http_port 3128 http_port 80 accel defaultsite=node01.srv.world https_port 443 accel defaultsite=node01.srv.world tls-cert=/etc/letsencrypt/live/dlp.srv.world/fullchain.pem tls-key=/etc/letsencrypt/live/dlp.srv.world/privkey.pem # line 3563 : add cache_peer node01.srv.world parent 80 0 no-query originserver # line 3695 : add to specify memory cache size cache_mem 256 MB # line 3969 : add # number means ⇒ [disk cache size] [number of directories on top level] [number of directories on 2nd level] cache_dir ufs /var/spool/squid 256 16 256root@dlp:~# systemctl restart squid
|
| [3] | If UFW is enabled, allow service. |
|
root@dlp:~# ufw allow http root@dlp:~# ufw allow https Rule added Rule added (v6) |
| [4] | Change DNS or Router's settings if need, and make it listen HTTP/HTTPS requests on Squid server. It's OK if backend http server responds like follows. |
|
Matched Content