Menu

How to Setup Squid Proxy Server on Ubuntu 18.04 & 16.04

Written by , Updated on November 29, 2018
Proxy , , , ,

Squid is the most popular Proxy server for Unix like operating systems. It also used for the web filtering. Squid also useful as caching proxy server for the HTTP, HTTPS, FTP protocols.

This article will help you to setup Squid Proxy Server on Ubuntu 18.10, 18.04 LTS, 16.04 LTS, and 14.04 LTS systems.

Step 1 – Install Package

Squid packages are available in default yum repositories. Execute below command on your server to install SQUID proxy server.

sudo apt update
sudo apt install squid

Step 2 – Configure Squid Port

The default port for the Squid proxy servers is 3128. You can change this as per the requirements. To setup Squid on different port, Edit squid configuration file and change http_port value with new port.

/etc/squid/squid.conf
 http_port 3128

After making changing let’s restart Squid service to reload the configuration changes

sudo service squid restart

The next steps will help you to Setup Squid Proxy Server on Ubuntu systems. Use only those settings, which is required for your proxy server.

Step 3 – Allow All Traffic

Sometimes you are required to allow all traffic on your proxy server. In Squid server open Squid configuration file. Comment the http_access deny all line and add the http_access allow all entry this file.

/etc/squid/squid.conf
 http_access allow all
 #http_access deny all

Squid allow all

Step 4 – Block Specific Website with Squid

Let’s start with the additional configuration like blocking any website using squid proxy server. Add below rules to block specific website before any allow all rules. Below example will block yahoo.com and www.rediff.com.

/etc/squid/squid.conf
acl blocksite1 dstdomain yahoo.com
acl blocksite2 dstdomain www.rediff.com
http_access deny blocksite1
http_access deny blocksite2

If you have a long list of domain names, Create a file /etc/squid/blockwebsites.lst and put domain names one per line and add below rule in the squid configuration file.

/etc/squid/squid.conf
acl blocksitelist dstdomain "/etc/squid/blockwebsites.lst"
http_access deny blocksitelist

blockwebsites.lst file content example:

cat /etc/squid/blockwebsites.lst

yahoo.com
www.rediff.com

Step 5 – Block Specific Keyword with Squid

Add below rules to block specific website before any allow all rules. Below example will block all pages having keyword yahoo or Gmail.

/etc/squid/squid.conf
acl blockkeyword1 url_regex yahoo
acl blockkeyword2 url_regex gmail
http_access deny blockkeyword1
http_access deny blockkeyword2

If you have a long list of keywords, Create a file /etc/squid/blockkeywords.lst and put keywords one per line and add below rule in the squid configuration file.

/etc/squid/squid.conf
acl blockkeywordlist url_regex "/etc/squid/blockkeywords.lst"
http_access deny blockkeywordlist

blockkeywords.lst file content example:

cat /etc/squid/blockkeywords.lst

yahoo
gmail
facebook

Congratulation’s you have successfully install and configured Squid proxy server. Read next article to Configure Squid for Mac Address Based Filtering.

Rahul
Rahul
Connect on Facebook Connect on Twitter Connect on Google+

I, Rahul Kumar am the founder and chief editor of TecAdmin.net. I am a Red Hat Certified Engineer (RHCE) and working as an IT professional since 2009..

Related Posts

9 Comments

  1. Avatar Raja Danyal Reply to Raja
    July 19, 2019 at 7:45 am

    how to set ip range of whole network that are using net to allow specific website and deny block_bad website

  2. Avatar Zak Reply to Zak
    July 3, 2019 at 1:19 pm

    Good Article!

    Just a question to the tecadmin.net, how can i use multiple (additional) ip adresses for adittional proxies. I got some additional IP’s from my provider, but I don’t know how to set them up? Can you help tecadmin?

    Thanks & Regards,
    Alex

  3. Avatar david Reply to david
    July 1, 2019 at 9:20 am

    I have done everything you said –
    the guide is very simple and clear –
    I got till the end and setup like you said , but now what?
    when I try to enter localhost:3128 – I get nothing
    where is the web gui?
    also how can I see it’s working?
    I try to setup in my router proxy serve – but it’s not working
    the comuter is 10.0.0.100 in my network – what do I need to do now?
    can you explain what to do now?
    Thanks ,

  4. Avatar Hemanta Baruah Reply to Hemanta
    June 8, 2019 at 6:05 pm

    Open squid conf file as a root user…..
    sudo vi /etc/squid/squid.conf

  5. Avatar Anup Shetty Reply to Anup
    March 6, 2019 at 11:03 am

    How to get the access.log file in a readable format to generate Squid Proxy Reports

  6. Avatar Bobak Tooyserkani Reply to Bobak
    March 6, 2019 at 1:34 am

    I’m having trouble with Step 2, as the squid.conf file is [Read-Only] and it won’t allow me to overwrite it with my http_port number. What should I do?

  7. Avatar rownak Reply to rownak
    January 27, 2019 at 9:55 am

    great article for online user.

  8. Avatar ChrisL Reply to ChrisL
    December 16, 2018 at 1:03 am

    I am pulling my hair out. Everytime I check my IP (web running thu squid proxy) from a site like whatsmyip.org, I get a different IP address each time. I only want the public IP address of the squid proxy server to show.

Leave a Reply

Copyright © 2013-2019 TecAdmin.net. All Rights Reserved. This site uses cookies. By using this website you agree with our term and services