Presentation is loading. Please wait.

Presentation is loading. Please wait.

Web Proxy. Computer Center, CS, NCTU 2 Proxy  Proxy A proxy server is a server which services the requests of its clients by:  Making requests to other.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Web Proxy. Computer Center, CS, NCTU 2 Proxy  Proxy A proxy server is a server which services the requests of its clients by:  Making requests to other."— Presentation transcript:

1 Web Proxy

2 Computer Center, CS, NCTU 2 Proxy  Proxy A proxy server is a server which services the requests of its clients by:  Making requests to other servers  Caching some results for further same requests Goals:  Performance  Stability  Central Control  …etc. Roles:  Forward Proxy  Reverse Proxy Targets  Web/FTP Pages  TCP/IP Connections  …etc. Request Reply Request Reply (using cached result) Request Reply client Proxy Server Original Server

3 Computer Center, CS, NCTU 3 Proxy – The Forward Proxy  Forward Proxy Proxy the outgoing requests, for the reason of  Bandwidth saving  Performance  Central control When objects requested are  In cache, return the cached objects  Otherwise, proxy server requests object from origin server, then cache it and return to client Request Reply Request Reply (using cached result) Request Reply client Proxy Server Original Server

4 Computer Center, CS, NCTU 4 Proxy – The Reverse Proxy  Reverse Proxy Proxy the incoming requests, for the reason of  Reducing Server Load (by caching)  Load Balance  Fault Tolerant Reverse proxy acts as the original server, accept incoming requests, reply corresponding result. SEAMLESS for clients! Request Reply client Reverse Proxy Server Server1 Request Reply Server1 Internet

5 Computer Center, CS, NCTU 5 Proxy – SQUID  A web proxy server & cache daemon. Supports HTTP, FTP Limited support for TLS, SSL, Gopher, HTTPS Latest stable version: 2.6-STABLE13, 2007/5/11  Port install: /usr/ports/www/squid  Startup: /etc/rc.conf  squid_enable="YES"  squid_config="/usr/local/etc/squid/squid.conf"  squid_user="squid" /usr/local/etc/rc.d/squid start  Configuration Sample/Documents: /usr/local/etc/squid/squid.conf.default

6 Computer Center, CS, NCTU 6 Proxy – SQUID Configuration (1)  Listen Port Service Port  http_port 3128 Neighbored Communication  icp_port 3130  Logs access_log  access_log /var/log/squid/access.log squid cache_log  cache_log /var/log/squid/cache.log cache_store_log  cache_store_log /var/log/squid/store.log

7 Computer Center, CS, NCTU 7 Proxy – SQUID Configuration (2)  Access Control acl – define an access control list  Format: acl acl-name acl-type data acl all src 0.0.0.0/0.0.0.0 acl NCTU srcdomain.nctu.edu.tw acl YAHOO dstdomain.yahoo.com acl allowhost src “/usr/local/etc/squid.squid.allow” http_access – define the control rule  Format: http_access allow|deny acl-name http_access allow NCTU http_access allow allowhost http_access deny all

8 Computer Center, CS, NCTU 8 Proxy – SQUID Configuration (3)  Proxy Relationship Protocol: ICP (Internet Cache Protocol) RFC 2186 2187, using UDP Related Configuration  cache_peer hostname type http_port icp_port [options]  cache_peer_domain cache-host domain [domain …]  cache_peer_access cache-host allow|deny acl-name

9 Computer Center, CS, NCTU 9 Proxy – SQUID Configuration (4)  Cache Control cache_mem 256 MB cache_dir ufs /usr/local/squid/cache 100 16 256 cache_swap_low 93 cache_swap_high 98 maximum_object_size 4096 KB maximum_object_size_in_memory 8 KB

10 Computer Center, CS, NCTU 10 Proxy – SQUID Configuration (5)  Sample: Proxy Configuration http_port 3128 icp_port 3130 cache_mem 32 MB cache_dir ufs /usr/local/squid/cache 100 16 256 access_log /var/log/squid/access.log squid cache_log /var/log/squid/cache.log cache_store_log /var/log/squid/store.log pid_filename /usr/local/squid/logs/squid.pid visible_hostname nabsd.cs.nctu.edu.tw acl allowhosts src "/usr/local/etc/squid/squid.allow“ http_access allow allowhosts http_access deny all

11 Computer Center, CS, NCTU 11 Proxy – SQUID Configuration (6)  Sample: Reverse Proxy Configuration http_port 80 vhost icp_port 3130 cache_mem 32 MB cache_dir ufs /usr/local/squid/cache 100 16 256 access_log /var/log/squid/access.log squid cache_log /var/log/squid/cache.log cache_store_log /var/log/squid/store.log pid_filename /usr/local/squid/logs/squid.pid visible_hostname nabsd.cs.nctu.edu.tw url_rewrite_program /usr/local/squid/bin/redirect.sh acl cswww dstdomain csws1 csws2 http_access allow all cswww always_direct allow cswww

12 Computer Center, CS, NCTU 12 Proxy – SQUID Configuration (7) % cat /usr/local/squid/bin/redirect.sh #!/bin/sh while read line do TIME=`date "+%S"` SERV=`expr $TIME % 2 + 1` echo $line | sed -e \ "s/^http:\/\/www\.cs\.nctu\.edu\.tw\//http:\/\/csws$SERV\.cs\.nctu\.edu\.tw\//" done

Download ppt "Web Proxy. Computer Center, CS, NCTU 2 Proxy  Proxy A proxy server is a server which services the requests of its clients by:  Making requests to other."

Similar presentations

Enabling Secure Internet Access with ISA Server

Enabling Secure Internet Access with ISA Server
IPv6 – IPv4 Network Address, Port & Protocol Translation & Multithreaded DNS Gateway Navpreet Singh, Abhinav Singh, Udit Gupta, Vinay Bajpai, Toshu Malhotra.

IPv6 – IPv4 Network Address, Port & Protocol Translation & Multithreaded DNS Gateway Navpreet Singh, Abhinav Singh, Udit Gupta, Vinay Bajpai, Toshu Malhotra.
SQUID Running SQUID in freeBSD Sufi Faruq Ibne Abubakar AKTEL, TMIB Bangladesh.

SQUID Running SQUID in freeBSD Sufi Faruq Ibne Abubakar AKTEL, TMIB Bangladesh.
Module 5: Configuring Access to Internal Resources.

Module 5: Configuring Access to Internal Resources.
Module 8: Concepts of a Network Load Balancing Cluster

Module 8: Concepts of a Network Load Balancing Cluster
Internet Networking Spring 2006 Tutorial 12 Web Caching Protocols ICP, CARP.

Internet Networking Spring 2006 Tutorial 12 Web Caching Protocols ICP, CARP.
Hypertext Transfer Protocol Kyle Roth Mark Hoover.

Hypertext Transfer Protocol Kyle Roth Mark Hoover.
1 Spring Semester 2007, Dept. of Computer Science, Technion Internet Networking recitation #13 Web Caching Protocols ICP, CARP.

1 Spring Semester 2007, Dept. of Computer Science, Technion Internet Networking recitation #13 Web Caching Protocols ICP, CARP.
Internet Networking Spring 2002 Tutorial 13 Web Caching Protocols ICP, CARP.

Internet Networking Spring 2002 Tutorial 13 Web Caching Protocols ICP, CARP.
Danguardian and Squid Proxy Installation and Configuration.

Danguardian and Squid Proxy Installation and Configuration.
Implementing ISA Server Caching. Caching Overview ISA Server supports caching as a way to improve the speed of retrieving information from the Internet.

Implementing ISA Server Caching. Caching Overview ISA Server supports caching as a way to improve the speed of retrieving information from the Internet.
Proxy Servers Dr. Ronald Bergmann, CIO, ISO. Proxy servers A proxy server is a machine which acts as an intermediary between the computers of a local.

Proxy Servers Dr. Ronald Bergmann, CIO, ISO. Proxy servers A proxy server is a machine which acts as an intermediary between the computers of a local.
14 July 2004 1 CONFIGURING A PROXY SERVER IN LINUX BY ROHIT KAUL CS, BITS-PILANI.

14 July CONFIGURING A PROXY SERVER IN LINUX BY ROHIT KAUL CS, BITS-PILANI.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.
Web Proxy Server Anagh Pathak Jesus Cervantes Henry Tjhen Luis Luna.

Web Proxy Server Anagh Pathak Jesus Cervantes Henry Tjhen Luis Luna.
Web Server Setup WEB SERVER SETUP.

Web Server Setup WEB SERVER SETUP.
1 Enabling Secure Internet Access with ISA Server.

1 Enabling Secure Internet Access with ISA Server.
Firewalls Marin Stamov. Introduction Technological barrier designed to prevent unauthorized or unwanted communications between computer networks or hosts.

Firewalls Marin Stamov. Introduction Technological barrier designed to prevent unauthorized or unwanted communications between computer networks or hosts.
Securing Squid (Proxy) Using Digest Authentication.

Securing Squid (Proxy) Using Digest Authentication.
Squid Proxy CentOS 6.4 Prepared by : Mr. Sopheap Position : IT Support Location : Deam Computer Date : 24/July/2013.

Squid Proxy CentOS 6.4 Prepared by : Mr. Sopheap Position : IT Support Location : Deam Computer Date : 24/July/2013.

Similar presentations

Ads by Google