Настройка ASA
access-list proxyclients extended permit tcp host $ip_client any eq www
access-list proxyservers extended permit ip host $ip_proxy any
wccp web-cache redirect-list proxyclients group-list proxyservers
wccp web-cache
wccp interface inside web-cache redirect in
Настройки прокси
/etc/sysctl.conf
net.ipv4.ip_forward=1
net.ipv4.conf.default.rp_filter=0
net.ipv4.conf.all.rp_filter=0
echo "ip_gre" >> /etc/modules
/etc/network/wccp.up
#!/bin/bash
iptunnel add wccp0 mode gre remote $asa_router_id local $ip_proxy dev eth0
ifconfig wccp0 inet $ip_proxy netmask 255.255.255.0 up
iptables -t nat -A PREROUTING -i wccp0 -p tcp -m tcp --dport 80 -j REDIRECT --to-port 3128
/etc/network/wccp.down
#!/bin/bash
iptables -t nat -F
iptunnel del wccp0
echo "post-up /etc/network/wccp.up" >> /etc/network/interfaces
echo "pre-down /etc/network/wccp.down" >> /etc/network/interfaces
/etc/squid/squid.conf
wccp2_router $ASA_interface
wccp_version 4
wccp2_rebuild_wait on
wccp2_forwarding_method 1
wccp2_return_method 1
wccp2_assignment_method 1
wccp2_service standard 0
Подписаться на:
Комментарии к сообщению (Atom)
1 коммент.:
Security is the main concern of every user as hacking is the source that can damage your account. In order to secure your account, you must have a 2fa and strong password. If you still suspect some unwanted issues, you can dial Binance helpdesk number which is always there to assist you. The professionals are always one more call away from you so; don’t get delayed in contacting them.The customer executive will provide germane solutions after going deep in your issue. Reaching the customer experts at any time over phone helps you in fixing your issue.
Отправить комментарий