{"id":2279,"date":"2017-08-25T09:52:13","date_gmt":"2017-08-25T09:52:13","guid":{"rendered":"https:\/\/tst-amo.pp.ua\/blog\/?p=2279"},"modified":"2017-08-25T09:52:13","modified_gmt":"2017-08-25T09:52:13","slug":"squid-transparent-proxy","status":"publish","type":"post","link":"https:\/\/tst-amo.net.ua\/blog\/?p=2279","title":{"rendered":"Squid &#8211; transparent proxy"},"content":{"rendered":"<p class=\"post-text\"><strong>Squid Installation and Configuration<\/strong><\/p>\n<pre class=\"code\">yum install squid -y<\/pre>\n<p class=\"post-text\">Edit squid configuration file<\/p>\n<p class=\"post-text\">Before you edit default configuration file it is highly recommended to keep backup.<\/p>\n<pre class=\"code\">cp \/etc\/squid\/squid.conf \/etc\/squid\/squid.conf.bk-07-05-2016<\/pre>\n<p class=\"post-text\">Open configuration file and add below mentioned parameters<\/p>\n<p class=\"code\">vi \/etc\/squid\/squid.conf<\/p>\n<p class=\"post-text\">Add transparent proxy setting and add and allow <em>our_network<\/em><\/p>\n<p class=\"code\">vi \/etc\/squid\/squid.conf<\/p>\n<pre class=\"code\">Allow LAN Network\r\nacl our_network src 192.168.2.0\/24\r\n# Allow Network ACL Allow\/Deny Section#\r\nhttp_access allow our_network\r\n# Transparent Proxy Parameters\r\nhttp_port 3128 intercept\r\nvisible_hostname pxy.broexperts.com<\/pre>\n<p class=\"post-text\">Save &amp; Exit<\/p>\n<p class=\"post-text\">Now start squid service and make sure it is added on startup.<\/p>\n<pre class=\"code\">systemctl start squid\r\nsystemctl enable squid<\/pre>\n<p class=\"code\">If you wish to use iptables instead of firewalld deamon use below link to enable iptables in CentOS7 and then Add below showing iptables rules to setup squid as transparent proxy.<\/p>\n<p class=\"post-text\"><strong>Note:-<\/strong>Refer this guide to enable iptables in CentOS 7<a href=\"http:\/\/broexperts.com\/2016\/05\/how-to-enable-iptables-firewall-in-centos-7-rhel-7\/\" target=\"_blank\">\u00a0How to Enable Iptables Firewall in CentOS 7 \/ RHEL 7<\/a><\/p>\n<pre class=\"code\">iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j DNAT --to 192.168.2.100:3128\r\niptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT --to-port 3128\r\niptables --t nat -A POSTROUTING --out-interface eth1 -j MASQUERADE<\/pre>\n<p class=\"post-text\">now you can save your iptable rules by following command:<\/p>\n<pre class=\"code\">service iptables save<\/pre>\n<p class=\"post-text\">That\u2019s It, Now squid should work smoothly in transparent proxy mode.<\/p>\n<p class=\"code\">\n<div class=\"pdfprnt-buttons pdfprnt-buttons-post pdfprnt-bottom-right\"><a href=\"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=wpv2posts2279&print=pdf\" class=\"pdfprnt-button pdfprnt-button-pdf\" target=\"_blank\"><img decoding=\"async\" src=\"https:\/\/tst-amo.net.ua\/blog\/wp-content\/plugins\/pdf-print\/images\/pdf.png\" alt=\"image_pdf\" title=\"View PDF\" \/><\/a><a href=\"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=wpv2posts2279&print=print\" class=\"pdfprnt-button pdfprnt-button-print\" target=\"_blank\"><img decoding=\"async\" src=\"https:\/\/tst-amo.net.ua\/blog\/wp-content\/plugins\/pdf-print\/images\/print.png\" alt=\"image_print\" title=\"Print Content\" \/><\/a><\/div>","protected":false},"excerpt":{"rendered":"<p>Squid Installation and Configuration yum install squid -y Edit squid configuration file Before you edit default configuration file it is highly recommended to keep backup. cp \/etc\/squid\/squid.conf \/etc\/squid\/squid.conf.bk-07-05-2016 Open configuration file and add below mentioned parameters vi \/etc\/squid\/squid.conf Add transparent proxy setting and add and allow our_network vi \/etc\/squid\/squid.conf Allow LAN Network acl our_network src &#8230;<\/p>\n<p><a href=\"https:\/\/tst-amo.net.ua\/blog\/?p=2279\" class=\"more-link\">Continue reading &lsquo;Squid &#8211; transparent proxy&rsquo; &raquo;<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[47,6],"tags":[],"class_list":["post-2279","post","type-post","status-publish","format-standard","hentry","category-linux","category-squid"],"_links":{"self":[{"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/posts\/2279"}],"collection":[{"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2279"}],"version-history":[{"count":1,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/posts\/2279\/revisions"}],"predecessor-version":[{"id":2280,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/posts\/2279\/revisions\/2280"}],"wp:attachment":[{"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2279"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2279"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2279"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}