Squid proxy server works by tracking the objects use over the network. Squid will act as an intermediary and simply passes the client's request on the server and also caches the copy of requested object. The purpose of this configuration is used to allow squid user to access internet with their own login credentials. This method will help in production environment and user can work in their own proxy rule. This tutorial is done to configure squid proxy user authentication using nsca_auth in CentOS 6.7.
To start with the configuration procedure, install squid and apache packages using yum command and press y to continue.
[root@server1 Desktop]# yum install squid httpd -y Loaded plugins: fastestmirror, refresh-packagekit, security Setting up Install Process Loading mirror speeds from cached hostfile * base: centos.excellmedia.net * extras: centos.excellmedia.net * updates: centos.excellmedia.net . . . Dependency Updated: httpd-tools.x86_64 0:2.2.15-60.el6.centos.5 Complete!
Start and check the status of squid service.
[root@server1 Desktop]# service squid start [root@server1 Desktop]# service squid status
Start and check the status of apache service.
[root@server1 Desktop]# service httpd start [root@server1 Desktop]# service httpd status
Open the squid.conf configuration file and create ACL rule for blocking the website.
[root@server1 Desktop]# vim /etc/squid/squid.conf acl ip_block src 192.168.7.208 192.168.7.207 acl web_block dstdomain “/etc/squid/block.txt” http_access deny ip_block web_block http_access allow ip_block
Create a file under /etc/squid/ and enter the sites to block.
[root@server1 Desktop]# vim /etc/squid/block.txt .youtube.com .facebook.com
Locate the ncsa_auth authentication.
[root@server1 Desktop]# rpm -ql squid | grep ncsa_auth /usr/lib64/squid/ncsa_auth /usr/share/man/man8/ncsa_auth.8.gz
Create username and password for authentication.
[root@server1 Desktop]# htpasswd –c /etc/squid/passwd user1
Configure nsca_auth for squid proxy authentication.
[root@server1 Desktop]# vim /etc/squid/squid.conf auth_param basic program /usr/lib64/squid/ncsa_auth /etc/squid/passwd acl ncsa proxy_auth REQUIRED http_access deny !ncsa
Finally restart the squid service.
[root@server1 Desktop]# service squid restart
Check the squid proxy server authentication on client machines. Enter the squid login credentials on pop-up window. Enter the required credetials.
Now the user is able to access websites.
To check for the restricted website, try to access it in the browser. The page will be blocked as you have configured.
The configuration procedure of Squid proxy server authentication on CentOS 6.7 is done successfully.
Thank you! for using Linux Help.
You find this tutorial helpful? Share with your friends to keep it alive.
For more help topics browse our website www.linuxhelp.com
Be the first to comment, we value your suggestions. For further queries please comment below.