Deploy a Content Filtering Proxy Server using SafeSquid to implement access control

Translated by Sean/Huang yongbing: BKJIA

The Content Filtering Proxy Server helps administrators control Internet access during content delivery. It is often used by institutions and schools to ensure that Internet usage complies with their own policies, the Content Filtering Proxy must fine-grained regulation on Internet access permissions and cross-enterprise constraints.

The Content Filtering Proxy can be used to filter unwanted content, such as URL or DNS blacklists, URL filtering, MIME filtering, keyword filtering, cookie filtering, packet header filtering, and pornographic image filtering.

The Content Filtering Proxy supports authentication, which is used to control access to the Internet. It generates logs, or provides detailed information about special user access URLs, or monitors bandwidth usage. At the same time, it also communicates with background services and works with anti-virus software integrated with the ICAP protocol to provide protection against viruses and malware. These are all completed by real-time scanning before the inbound content enters the entire network.

In this article, I will describe the installation process of the Content Filtering Proxy software-SafeSquid.

About SafeSquid

SafeSquid is a Linux-based content filtering HTTP1.1 proxy and an application layer firewall that allows administrators to control who can access what, when to access and how much content to access on the network. It gives administrators all access control and all content control.

SafeSquid provides a free and time-free version that can be used for a network of 20 users.Http://www.safesquid.com/html/portal.php? Page = 126Download.

Install SafeSquid on the Linux box

Download the downloaded safesquid.tar.gz to/usr/local/src /:
Cp safesquid-4.2.0-com20-free.tar.gz/usr/local/src/safesquid.tar.gz

Run the tar command to decompress the tar file:
Tar-xvzf safesquid-4.2.0-com20-free.tar.gz

This will create a safesquid directory in your current working directory and enter this directory:
Cd safesquid/

The safesquid directory contains the installation script install. Run the script:
./Install

The installation script requires you to select one of the following three options:
Press "F" if we are doing a Fresh install
Press "U" if we want to Update an existing installation
Press "A" if we want to Adjust an existing conf file
Because I am a brand new installation, use 'F '.

The installation script checks the dependencies and displays the status. The output should be similar:

Checking Dependencies/lib/libsafe.so.2 (0xf6ffa000)libpam.so.0 => /lib/libpam.so.0 (0xf6fea000)libdl.so.2 => /lib/libdl.so.2 (0xf6fe5000)libpthread.so.0 => /lib/tls/i686/libpthread.so.0 (0xf6fd4000)libssl.so.4 => /lib/libssl.so.4 (0xf6fa0000)libstdc++.so.6 => /usr/lib/libstdc++.so.6 (0x00bbb000)libm.so.6 => /lib/tls/i686/libm.so.6 (0xf6f7d000)libc.so.6 => /lib/tls/i686/libc.so.6 (0xf6e69000)libgcc_s.so.1 => /lib/libgcc_s.so.1 (0x00974000)/lib/ld-linux.so.2 (0x00b97000)libgssapi_krb5.so.2 => /usr/lib/libgssapi_krb5.so.2 (0x009e7000)libkrb5.so.3 => /usr/lib/libkrb5.so.3 (0x00b1e000)libcom_err.so.2 => /lib/libcom_err.so.2 (0x009e2000)libk5crypto.so.3 => /usr/lib/libk5crypto.so.3 (0x00afb000)libresolv.so.2 => /lib/libresolv.so.2 (0xf6e55000)libcrypto.so.4 => /lib/libcrypto.so.4 (0x00a11000)libz.so.1 => /usr/lib/libz.so.1 (0x00962000)looks okayPress any key to continue

If the report lacks a dependency, you must install the dependency package before proceeding. If everything is ready, press any key to continue.

The following options are displayed in the SafeSquid End User License Agreement:
Press "B"/"F" to move Back/Forward
Press "S" when you have finished reading

Read the license agreement or press 's' To skip and continue. The following options are displayed:
Press "Y" if you find the End-User License Acceptable
Press "A" To Read the End-User License Again
Press "N" if you find the End-User License NOT Acceptable
And immediately abort the Installation Process
Press 'y' to continue.

Now, you can use the default options for installation by 's', or carefully check each option page. The installation script will ask about 28 options, and all option pages do not need to be described, you do not need to make any changes.

If you want to modify the default options, press 'C'. After you make the necessary changes, press 's' To continue the installation.

In fact, you can use/etc/init later. d/safesquid Adjustment Command to modify, or directly edit startup. conf file in/opt/safesquid/init. d directory. These changes take effect after the next SafeSquid restart.

Start the installation by pressing 'S'. The installation will be paused several times to display the status and confirmation. After the installation is complete, the following information will be displayed:
Press "S" if you wowould like to start your safesquid now
Press any other key to simply exit

Start SafeSquid by pressing 's', and you will see the following message:
1. safesquid started with PID: 9659... ssquid is not listening on: 8080...
2. safequid started with PID: 9659... ssquid is LISTENING on 192.168.0.30: 8080... Process IS RUNNING

Then, your SafeSquid is successfully installed and runs.

Now, access the SafeSquid interface, click proxy settings in your browser, fill in the IP address of the SafeSquid server: port, for example, 192.168.0.30: 8080, and then access the URL:Http://safesquid.cfg

498) this. style. width = 498; "border = 0>

SafeSquid web interface.

Note: If a problem occurs, run the following command:
/Etc/init. d/safesquid dircheck

It will check and correct the installation files and directories and their permissions, and then restart SafeSquid with the following command:
/Etc/init. d/safesquid restart
Good luck!