Comments on Anonymous Proxy Using SQUID 3 On CentOS 5.x
Anonymous Proxy Using SQUID 3 On CentOS 5.x This howto describes step by step a method to install a SQUID 3 server as an Anonymous Proxy. An anonymous proxy is a tool that attempts to make activity on the Internet untraceable. It accesses the Internet on the user's behalf, protecting personal information by hiding the source computer's identifying information. Simply say to hide your IP.
21 Comment(s)
Comments
I have a ton of usernames and passwords and it's SUCH A CHORE to re-add them every time I reinstall the os because ubuntu or centos 5.2 crashed and kicks everyone off the proxy server. ANYBODY got a quick and nearly instant way to input usernames and passwords?? Help!
I think the correct command should be rpm groupinstall -y "Development Tools"
On a Centos 5.5 box, i was able to get yum to work with groupinstall
yum groupinstall "Development Tools"
(as opposed to rpm...)
I repeatedly got bad exit status for iconv 'iconv: conversion from ISO88591 unsupported' and 'iconv: conversion to UTF8 unsupported' - Maybe a problem with the .spec file - Changing
iconv -f ISO88591 -t UTF8 ChangeLog -o ChangeLog.tmp
to
iconv -f ISO-8859-1 -t UTF-8 ChangeLog -o ChangeLog.tmp
didn't work and gave a not found error for ChangeLog.tmp
Changing to
iconv -f ISO-8859-1 -t UTF-8 ChangeLog > ChangeLog.tmp
worked fine though
To download Squid 3 via wget, the link above may no longer work. They have since moved it to the release directory.
New Location : http://archives.fedoraproject.org/pub/archive/fedora/linux/releases/10/Fedora/source/SRPMS/squid-3.0.STABLE10-1.fc10.src.rpm
Here is the addition if you want to bypass the login screen for your local network clients. I also added a bypass for Hamachi (5.0.0.0/8) since I use this setup to securely browse from open hotspots.
#INSERT YOUR OWN RULES(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTSacl our_networks src 192.168.1.0/24 5.0.0.0/8
http_access allow our_networks
acl ncsaauth proxy_auth REQUIRED
http_access allow ncsaauth
You should have miss something as i have used similar configuration on several servers and all works fine. Double check your configuration
Regards,
I think the Author is really an idiot, he missed the most important point, which is:
EITHER, the client computer ip will be hidden or the Proxy Server's ip will be hidden, BUT NEVER both.
Simplier, if you set the "forwarded_for" to off, the proxy server's ip will be hidden, but the cost is showing the client computer's ip. If your set the forwarded_for to On, the client computer's will be hidden, but the proxy server's ip will be shown.
You should read this clearly first then put your comments. You make yourself an idiot by just ignoring following statement.
It accesses the Internet on the user's behalf, protecting personal information by hiding the source computer's identifying information. Simply say to hide your IP.
Its clearly says "source computer's identiffying information".
I just LOL'ed at this. It never hides the IP of the proxy server. The proxy server is connecting directly to the remote web server, so it is impossible to hide the IP of that (not counting IP spoofing, but that can't be used if you actually want to receive a response anyway). What you should have said was:
"forwarded_for" to off = source PC hidden
forwarded_for to On = nothing hidden (remote web server gets the proxy's IP and the source PC's IP)
i have set my browser setting and all but when i open http://www.whatsmyipaddress.com
it shows my ISP ip in the browser.please can anyone help me out.
thanks in advance
did you figure out why whatismyipaddress.com was showing your ISP ip address? I tried this setup and it still shows my isp address?
Does it mattter that I have my squid proxy on the same machine that acts as the client also?
my squid runs on 127.0.0.1:3128
I followed the instructions except for the authentication part but I don't think that is the problem. Any suggestions? I'm using the latest squid ver. 3.1.9
getting this error
# service squid start
init_cache_dir /var/spool/squid... /etc/init.d/squid: line 62: 21692 Aborted $SQUID -z -F -D >> /var/log/squid/squid.out 2>&1
Starting squid: /etc/init.d/squid: line 42: 21695 Aborted $SQUID $SQUID_OPTS >> /var/log/squid/squid.out 2>&1
[FAILED]
followed all what you wrote
I've installed Squid on 2 Debian systems, 1 Fedora and 1 Centos in the last days, and for Centos / Fedora I am using part of this tutorial as source. 2 comments.
1) "Childred" in the NCSA code should obviously be "children".
2) Since we've to compile (the Rpms for Fedora and Centos are for 2.6, which isses alot of essential features for a password protected proxy), I think it makes more sense to go to the root of the program and use the source from Squid-cache.org. In fact using the source for Fedora for Centos (and even for Fedora itself) still gave me some bugs and issues.
Thanks..
Hi!
Thats not work with clearos 5.2 
does it worck with ipv6 ? i have 2 ipv4 and 5 ipv6 on my server . How can i add them all to squid ?
Congratulations by the 'how to'. Very useful!!
from:
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/squid_passwd
to:
auth_param basic program /usr/lib64/squid/ncsa_auth /etc/squid/squid_passwd
I was able to locate the true path with:
cd
rpm -ql squid | grep ncsa_auth
I installed Squid on CentOS6
After do above configuration I got following error. Anyone can help me
Starting squid: [FAILED]
2013/02/25 04:31:04| Processing Configuration File: /etc/squid/squid.conf (depth 0)
FATAL: auth_param basic program /usr/lib/squid/ncsa_auth: (2) No such file or directory
Squid Cache (Version 3.1.10): Terminated abnormally.
CPU Usage: 0.010 seconds = 0.004 user + 0.006 sys
Maximum Resident Size: 22608 KB
Page faults with physical i/o: 2
Better set forwarded_for to delete instead of on/off, to completely delete it.
http://www.squid-cache.org/Doc/config/forwarded_for/