Can someone pleeeeease help me configure a Squid proxy .conf file.

It took me weeks to configure it correctly, and then my system crashed yesterday.

I am clueless to how to reconfigure it, I keep trying and trying, but it isn't work properly

Here's some info if you'd like to help

The adresses on my network are 10.66.0.0 & 10.66.30.0 (with the last digit changing) the subnet is 255.255.0.0

I do not have an ACL because I am not sure how to create one

The OS is ubuntu

The IP/Host of the proxy server is 10.66.30.101 /Squid

I want to use http port 8080.

Please anyone could you create a sample .conf file for me.

I am going to be using safesquid also (which I know how to configure.

I am just terrified in losing time trying to configure this, because I had it all done yesterday, I am scared that I will get in trouble w/my boss. Please help if you can.
Seriously, If you can help me this will be the best xmas present anyone could give me. I am ready to vomit, I worked so hard on it and got it working, now I can't for the life of me.

If you would like to help me make an acl that'd be very helpful too. Please I'm begging anyone to help me.

I am clueless to how to reconfigure it, I keep trying and trying, but it isn't work properly

:confused: The squid.conf file is well documented. I tried to post a full config from my filter, but AMHD limits posts to 173,290 characters. So..

The main options to adjust are:

Set http_port Your_Port for listening port, 8080 in your case.
Create acl Your_Acl your_network/your_network_bits statements for your networks to be proxied, e.g., acl Your_Network1 10.66.0.0/16 or acl Your_Network2 10.66.30.0/24 (Note something is funky here the way you described it. Second network is member of first.)
Add http_access allow Your_Acl statements to allow or deny your named acls. These need to be in the correct order before the http_access deny all statement.

You will need at least one acl statement specifying a subnet or a range of hosts so that you can allow it with a http_access statement, otherwise the default config denies everything if I recall correctly.

Additional Resources:
Ubuntu - Squid Proxy (https://help.ubuntu.com/6.06/ubuntu/serverguide/C/squid.html)
Squid Configuration Examples (http://wiki.squid-cache.org/ConfigExamples/)

How do you create an acl? IS it a text document, that you give a .acl extension? Or is it just a line I write in the conf file

It is a line in squid.conf. Have you even looked at squid.conf? There is a whole section on access controls with full instructions.

Scleros,

I would sooooo appreciate if you could email me that .conf that you created.
My email address is [email protected]

Yeah I been looking at that file for days. I am just a beginner. I have never set up a proxy before or even used linux until recent. I read the instructions but I still don't get it

I'll post squid.conf here as a PDF. My squid is being used as a proxy on a content filtering server. You'll need to adjust it to fit YOUR situation.

The only lines I added to the default config, I think, were:
Acl MyLocalNetwork src 192.168.1.0/24
Acl MyRemoteSite src [address_removed]/255.255.255.255
Acl MyOtherRemoteSite src [address_removed]/255.255.255.255
http_access allow MyLocalNetwork
http_access allow MyRemoteSite
http_access allow MyOtherRemoteSite

I put my acls with my http_access's instead of with the other acls so they were nearby each other in the file for editing.

I have safesquid installed on this PC, to work with squid. But when I go to the browser based GUI I get this message from squid.

While trying to retrieve the URL: http://safesquid.cfg/

The following error was encountered:

Unable to determine IP address from host name for safesquid.cfg

The dnsserver returned:

Name Error: The domain name does not exist.

This means that:

The cache was not able to resolve the hostname presented in the URL.
Check if the address is correct.

Your cache administrator is webmaster.
Generated Thu, 04 Dec 2008 16:21:18 GMT by squid (squid/2.7.STABLE3)

I tried typing (My ip, the ip of the proxy server) /10.66.0.35/safesquid.cfg/ and got this error message
ERROR
The requested URL could not be retrieved

While trying to retrieve the URL: http://10.66.0.35/safesquid.cfg/

The following error was encountered:

* Connection to 10.66.0.35 Failed

The system returned:

(111) Connection refused

The remote host or network may be down. Please try the request again.

Your cache administrator is webmaster.
Generated Thu, 04 Dec 2008 16:24:03 GMT by squid (squid/2.7.STABLE3)

Could this have to do with the acl myremote site? If so what do you fill in where it says address removed?

Could this have to do with the acl myremote site? if so what do you fill in where it says address removed?

First, I don't know anything about SafeSquid. But, http://safesquid.cfg/ is not a valid URL, why are you attempting to access the file in this manner?

The MyRemoteSite acls were for my remote sites and representative of an acl for such a site. If you have a remote site, you would fill in the public IP address of that site or otherwise adjust the entry for the site's ip address(es). You cannot just plop someone else's config file into your squid and expect it to work.

SafeSquid looks to be a commercial product. If you have purchased this product, I think your best bet would be to avail yourself of their technical support. It appears they can even do a RemotePC session and configure the product for you.

Safesquid is a web content filter... the way you access it, is on the proxy server by typing that url, http://safesquid.cfg/ , I had all this working last week, now I keep getting errors after my PC crashed, I know that the URL works, its just that squid is blocking it and I am not sure why?

It sounds as if squid is the one handling web requests and not SafeSquid. Is your browser configured to use the proxy as described at SafeSquid Interface (http://www.safesquid.com/download/docs/Version%202.0/HTML/safesquid_interface.htm)? There is also an explanation of setting up SafeSquid for use with Squid at Content Filtering - Chain Squid with SafeSquid (http://www.safesquid.com/html/portal.php?page=42). Do you need to be running both?

I'm also not so motivated as to install SafeSquid to see what's required, but the installation looks to be fairly straightforward. Deleting and reinstalling from scratch or contacting tech support is your best option. Trial and error is terribly time consuming.

Squid, is just a proxy, safesquid, is web content filter, safesquid was very easy to setup and install, I had it working earlier this week, I can't remember how I got it to work though, I don't know If I need to put some sort of file or line in squid for it to use safesquid, but I know it does work, I just can't figure out how. How do I contact tech support? And is it free?

The info at Content Filtering Internet Proxy - SafeSquid (http://www.safesquid.com/) indicates SafeSquid is a proxy as well as a content filter. I'm just wondering why squid needs to be used too.

Several methods of tech support are available at How to Get Support for installing and managing your proxy server (http://www.safesquid.com/html/portal.php?page=58). The "Quick Software Trouble-shooting Support" section would seem to be the most appropriate for your situation. All the options presented make no mention of costs. If there is a charge, it is likely dependent on the particular SafeSquid version that was purchased. SafeSquid seems to be a very accessible organization given the available contact options on their "Contact Us" page. Contact them and find out what your support options are.

I know it is very late to answer this question, but still -

To access the SafeSquid Web Interface, you have 2 options:

1. Configure your browsers proxy settings to use SafeSquid IP:PORT as proxy, and then you will be able to access the interface with http://safesquid.cfg

2. Change the HOSTNAME parameter in the SafeSquid startup.conf file to the SafeSquid Server's IP. Then you can access the interface with http://<safesquid_IP:PORT>/safesquid.cfg
This option does not require you set the proxy in your browser.