如何使用squid快速搭建代理
=======
本项目主要介绍如何利用国外VPS搭建多协议代理服务。
GFW 封锁了 HTTP/Socks5 代理,HTTP 代理是关键词过滤,Socks5 代理则是封锁协议。不过某些特殊的低端口并没有这么处理,已知的有 21,25。
20端口已经被封杀,21端口目前会被限速400Kbps,换算后约合50KB/S,建议使用25端口,不限速。
搭建代理服务器
==============
在 25 端口搭建 http/https 代理。
Ubuntu:
|
1
2
3
|
apt-get
install
squid
curl https:
//pac
.itzmx.com
/squid/ubuntu-squid
.conf >>
/etc/squid3/squid
.conf
/etc/init
.d
/squid
restart
|
Centos:
|
1
2
3
4
5
6
7
8
9
10
11
|
setenforce 0
ulimit
-n 1048576
echo
"* soft nofile 1048576"
>>
/etc/security/limits
.conf
echo
"* hard nofile 1048576"
>>
/etc/security/limits
.conf
killall sendmail
/etc/init
.d
/postfix
stop
chkconfig --level 2345 postfix off
yum -y
install
squid
wget -O
/etc/squid/squid
.conf https:
//pac
.itzmx.com
/squid/centos-squid
.conf
/etc/init
.d
/squid
restart
chkconfig --level 2345 squid on
|
|
1
|
https:
//pac
.itzmx.com
/squid/ubuntu-squid
.conf的内容如下:
|
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
|
auth_param basic program
/usr/lib/squid/basic_ncsa_auth
/etc/squid/passwd
auth_param basic children 5
auth_param basic realm Welcome to pac.itzmx.com proxy web server
acl SSL_ports port 443
acl Safe_ports port 80
# http
acl Safe_ports port 21
# ftp
acl Safe_ports port 443
# https
acl Safe_ports port 70
# gopher
acl Safe_ports port 210
# wais
acl Safe_ports port 1025-65535
# unregistered ports
acl Safe_ports port 280
# http-mgmt
acl Safe_ports port 488
# gss-http
acl Safe_ports port 591
# filemaker
acl Safe_ports port 777
# multiling http
acl CONNECT method CONNECT
acl squid_user proxy_auth REQUIRED
http_access allow squid_user
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny all
http_port 25
coredump_dir
/var/spool/squid
refresh_pattern -i ^
ftp
: 525600 95% 525600 reload-into-ims
refresh_pattern -i (
/cgi-bin/
|\?) 0 0% 0 reload-into-ims
refresh_pattern -i . 525600 95% 525600 reload-into-ims
strip_query_terms off
visible_hostname pac.itzmx.com
cache_mgr 1265578519@qq.com
cache_store_log none
cache_access_log none
cache_mem 256 MB
cache_dir aufs
/var/cache/squid
5000 128 128
cache_swap_low 90
cache_swap_high 95
maximum_object_size 128 MB
maximum_object_size_in_memory 128 MB
dns_nameservers 8.8.8.8 8.8.4.4
client_lifetime 1 minutes
half_closed_clients off
fqdncache_size 65535
ipcache_size 65535
ipcache_low 90
ipcache_high 95
|
|
1
|
https:
//pac
.itzmx.com
/squid/centos-squid
.conf的内容如下:
|
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
|
auth_param basic program
/usr/lib64/squid/ncsa_auth
/etc/squid/passwd
auth_param basic children 5
auth_param basic realm Welcome to pac.itzmx.com proxy web server
acl manager proto cache_object
acl localhost dst 127.0.0.0
/8
0.0.0.0
/32
::1
acl SSL_ports port 443
acl Safe_ports port 80
# http
acl Safe_ports port 21
# ftp
acl Safe_ports port 443
# https
acl Safe_ports port 70
# gopher
acl Safe_ports port 210
# wais
acl Safe_ports port 1025-65535
# unregistered ports
acl Safe_ports port 280
# http-mgmt
acl Safe_ports port 488
# gss-http
acl Safe_ports port 591
# filemaker
acl Safe_ports port 777
# multiling http
acl CONNECT method CONNECT
acl squid_user proxy_auth REQUIRED
http_access allow squid_user
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny all
http_port 25
coredump_dir
/var/spool/squid
refresh_pattern -i ^
ftp
: 525600 95% 525600 reload-into-ims
refresh_pattern -i (
/cgi-bin/
|\?) 0 0% 0 reload-into-ims
refresh_pattern -i . 525600 95% 525600 reload-into-ims
strip_query_terms off
visible_hostname pac.itzmx.com
cache_mgr 1265578519@qq.com
cache_store_log none
cache_access_log none
cache_mem 256 MB
cache_dir aufs
/var/cache/squid
5000 128 128
cache_swap_low 90
cache_swap_high 95
maximum_object_size 128 MB
maximum_object_size_in_memory 128 MB
dns_nameservers 8.8.8.8 8.8.4.4
client_lifetime 1 minutes
half_closed_clients off
fqdncache_size 65535
ipcache_size 65535
ipcache_low 90
ipcache_high 95
|
不知道能否使用,先收藏找时间试试
本文转自 f_066 51CTO博客,原文链接:http://blog.51cto.com/ganmu/1962417,如需转载请自行联系原作者
