Install a simple proxy server
#1
Exclamation 
Can anyone help me install a simple proxy server that allow all the traffic, like all other public proxies. I'm using ubuntu 16.04.
I tried Squid, but got TCP_MISS/200

I need help here!!!
Thanks FreeVPS and Hostigation for my VPS 18!
[Image: img.php?userid=17629]
#2
I believe you have install squid. Could you please post your squid.conf file here so that the necessary changes can be suggested to you.
[Image: img.php?v2=1&userid=19445]
Thank you to freevps.us and http://nodeblade.com for FREE VPS  Angel
#3
So, this is my config:
Code:
http_port 9090
cache_mem 1000 MB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /var/spool/squid 10000 16 256



maximum_object_size 30000 KB
maximum_object_size_in_memory 40 KB

access_log /var/log/squid/access.log squid
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
pid_filename /var/log/squid/squid.pid
#mime_table /usr/share/squid/mime.conf

cache_mgr admin@hadagalberto.xyz
memory_pools off

diskd_program /usr/lib/squid/diskd

refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern (cgi-bin|\?) 0 0% 0
refresh_pattern . 0 20% 4320
quick_abort_max 16 KB
quick_abort_pct 95
quick_abort_min 16 KB
request_header_max_size 20 KB
reply_header_max_size 20 KB
request_body_max_size 0 KB

acl manager proto cache_object
acl localhost src 127.0.0.1/32
#auth_param basic program /usr/lib/squid/basic_ncsa_auth /etc/squid/passwords
#auth_param basic realm proxy
#acl authenticated proxy_auth REQUIRED
#http_access allow authenticated


acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 1863 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

http_access allow all

#http_access allow manager localhost
#http_access deny manager
#http_access deny !Safe_ports
#http_access deny CONNECT !SSL_ports

cache_mgr webmaster
mail_program mail
cache_effective_user proxy
cache_effective_group proxy
httpd_suppress_version_string off
visible_hostname srv1.hadagalberto.xyz
Thanks FreeVPS and Hostigation for my VPS 18!
[Image: img.php?userid=17629]
#4
Code:
#
# Recommended minimum configuration:
#
acl manager proto cache_object
acl localhost src 127.0.0.1/32 ::1
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1

# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
acl localnet src 10.0.0.0/8     # RFC1918 possible internal network
acl localnet src 172.16.0.0/12  # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
acl localnet src fc00::/7    # RFC 4193 local private network range
acl localnet src fe80::/10    # RFC 4291 link-local (directly plugged) machines

acl SSL_ports port 443
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443         # https
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl CONNECT method CONNECT

#
# Recommended minimum Access Permission configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access deny manager
# Deny requests to certain unsafe ports
http_access deny !Safe_ports

# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
http_access allow localnet
http_access allow localhost

# And finally deny all other access to this proxy
http_access allow all
http_port 9090


# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid

# Add any of your own refresh_pattern entries above these.
refresh_pattern ^ftp:           1440    20%     10080
refresh_pattern ^gopher:        1440    0%    1440
refresh_pattern -i (/cgi-bin/|\?) 0     0%    0
refresh_pattern .               0    20%     4320
via off
forwarded_for off

request_header_access Allow allow all
request_header_access Authorization allow all
request_header_access WWW-Authenticate allow all
request_header_access Proxy-Authorization allow all
request_header_access Proxy-Authenticate allow all
request_header_access Cache-Control allow all
request_header_access Content-Encoding allow all
request_header_access Content-Length allow all
request_header_access Content-Type allow all
request_header_access Date allow all
request_header_access Expires allow all
request_header_access Host allow all
request_header_access If-Modified-Since allow all
request_header_access Last-Modified allow all
request_header_access Location allow all
request_header_access Pragma allow all
request_header_access Accept allow all
request_header_access Accept-Charset allow all
request_header_access Accept-Encoding allow all
request_header_access Accept-Language allow all
request_header_access Content-Language allow all
request_header_access Mime-Version allow all
request_header_access Retry-After allow all
request_header_access Title allow all
request_header_access Connection allow all
request_header_access Proxy-Connection allow all
request_header_access User-Agent allow all
request_header_access Cookie allow all
request_header_access All deny all

Hey try this, This is open Squid Proxy I am running, you could try running this configuration. Smile
[Image: img.php?v2=1&userid=19445]
Thank you to freevps.us and http://nodeblade.com for FREE VPS  Angel
#5
(2016-08-21, 2:46:10 pm)hadagalberto Wrote:  Can anyone help me install a simple proxy server that allow all the traffic, like all other public proxies. I'm using ubuntu 16.04.
I tried Squid, but got TCP_MISS/200

I need help here!!!

all the VPSs that are free provided here don't allow open proxies, in order to setup a webproxy and not violate the TOS you must make sure that it's private and you and only you can access that proxy, you can do that by using the basic username/password authentication, personally i just use the openssh tunnel when ever i need to, the command line switch to forward your traffic is "-D <port>", this will listens on the port you spicefied, in example if i have a machine running on 192.167.0.3 and i wanted to forward the local traffic to it i will enter
ssh 192.168.0.3 -D 7171
this will open a socks port(7171) on my computer that other programs that support socks can connect to.
i recomend you to use this method as you have to worry about crackers/hackers trying to brute-force your proxy as you will only use it when you need it.
#6
(2016-08-21, 7:50:22 pm)CyberHawk Wrote:  all the VPSs that are free provided here don't allow open proxies, in order to setup a webproxy and not violate the TOS you must make sure that it's private and you and only you can access that proxy, you can do that by using the basic username/password authentication, personally i just use the openssh tunnel when ever i need to, the command line switch to forward your traffic is "-D <port>", this will listens on the port you spicefied, in example if i have a machine running on 192.167.0.3 and i wanted to forward the local traffic to it i will enter
ssh 192.168.0.3 -D 7171
this will open a socks port(7171) on my computer that other programs that support socks can connect to.
i recomend you to use this method as you have to worry about crackers/hackers trying to brute-force your proxy as you will only use it when you need it.

I'll run in i VPS i bought from Host1Plus. :fingers-crossed:

(2016-08-21, 6:05:18 pm)acx12345 Wrote:  
Code:
#
# Recommended minimum configuration:
#
acl manager proto cache_object
acl localhost src 127.0.0.1/32 ::1
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1

# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
acl localnet src 10.0.0.0/8     # RFC1918 possible internal network
acl localnet src 172.16.0.0/12  # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
acl localnet src fc00::/7    # RFC 4193 local private network range
acl localnet src fe80::/10    # RFC 4291 link-local (directly plugged) machines

acl SSL_ports port 443
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443         # https
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl CONNECT method CONNECT

#
# Recommended minimum Access Permission configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access deny manager
# Deny requests to certain unsafe ports
http_access deny !Safe_ports

# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
http_access allow localnet
http_access allow localhost

# And finally deny all other access to this proxy
http_access allow all
http_port 9090


# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid

# Add any of your own refresh_pattern entries above these.
refresh_pattern ^ftp:           1440    20%     10080
refresh_pattern ^gopher:        1440    0%    1440
refresh_pattern -i (/cgi-bin/|\?) 0     0%    0
refresh_pattern .               0    20%     4320
via off
forwarded_for off

request_header_access Allow allow all
request_header_access Authorization allow all
request_header_access WWW-Authenticate allow all
request_header_access Proxy-Authorization allow all
request_header_access Proxy-Authenticate allow all
request_header_access Cache-Control allow all
request_header_access Content-Encoding allow all
request_header_access Content-Length allow all
request_header_access Content-Type allow all
request_header_access Date allow all
request_header_access Expires allow all
request_header_access Host allow all
request_header_access If-Modified-Since allow all
request_header_access Last-Modified allow all
request_header_access Location allow all
request_header_access Pragma allow all
request_header_access Accept allow all
request_header_access Accept-Charset allow all
request_header_access Accept-Encoding allow all
request_header_access Accept-Language allow all
request_header_access Content-Language allow all
request_header_access Mime-Version allow all
request_header_access Retry-After allow all
request_header_access Title allow all
request_header_access Connection allow all
request_header_access Proxy-Connection allow all
request_header_access User-Agent allow all
request_header_access Cookie allow all
request_header_access All deny all

Hey try this, This is open Squid Proxy I am running, you could try running this configuration. Smile
I still have HTTP_MISS:
1471799555.665 715 189.6.24.195 TCP_MISS/200 514 GET http://claro-gestoronline.claro.com.br/ - HIER_DIRECT/200.169.122.52 text/html
Thanks FreeVPS and Hostigation for my VPS 18!
[Image: img.php?userid=17629]
#7
okay. I hadnt encountered this. But will have to follow up with this. But is your proxy server serving requests or not?

(2016-08-21, 9:53:00 pm)hadagalberto Wrote:  I'll run in i VPS i bought from Host1Plus. :fingers-crossed:

I still have HTTP_MISS:
1471799555.665 715 189.6.24.195 TCP_MISS/200 514 GET http://claro-gestoronline.claro.com.br/ - HIER_DIRECT/200.169.122.52 text/html

Ok heres the thing, since you are getting a TCP_MISS/200, your system is working perfectly alright.

You can read about TCP_MISS here

http://wiki.squid-cache.org/SquidFaq/Squ...access.log
[Image: img.php?v2=1&userid=19445]
Thank you to freevps.us and http://nodeblade.com for FREE VPS  Angel
#8
(2016-08-22, 3:56:38 am)acx12345 Wrote:  okay. I hadnt encountered this. But will have to follow up with this. But is your proxy server serving requests or not?


Ok heres the thing, since you are getting a TCP_MISS/200, your system is working perfectly alright.

You can read about TCP_MISS here

http://wiki.squid-cache.org/SquidFaq/Squ...access.log

I discovered it only returns HTTP_MISS when i try to login in it's SSH account when i am connected to the proxy, so i think it isn't accepting a localhost connection(the part i need). I'm trying to make a HTTP Injector connection, and I need to login in SSH while using a proxy server.

Btw, there's another way to redirect traffic using the VPS?
Thanks FreeVPS and Hostigation for my VPS 18!
[Image: img.php?userid=17629]
#9
Hidden Refuge's auto installer is very useful for this kind of thing

https://freevps.us/thread-15256.html?hig...quid+proxy
#10
You cannot connect to other protocols over pure HTTP only proxies like Squid. To do so you need a SOCKS5 proxy server.

Unencrypted SOCKS5 proxy: https://freevps.us/thread-15646.html

Encrypted SOCKS5 proxy: https://freevps.us/thread-16882.html




Users browsing this thread: 1 Guest(s)