1 安装squid
centos:
yum install -y squid
ubuntu:
apt install -y squid
2 配置squid
vim /etc/squid/squid.conf
找到如下内容添加一行,表示允许内网ip段访问
acl localnet src 0.0.0.1-0.255.255.255 # RFC 1122 "this" network (LAN)
acl localnet src 10.0.0.0/8 # RFC 1918 local private network (LAN)
acl localnet src 100.64.0.0/10 # RFC 6598 shared address space (CGN)
acl localnet src 169.254.0.0/16 # RFC 3927 link-local (directly plugged) machines
acl localnet src 172.16.0.0/12 # RFC 1918 local private network (LAN)
acl localnet src 192.168.0.0/16 # RFC 1918 local private network (LAN)
acl localnet src fc00::/7 # RFC 4193 local private network range
acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines
# 在这里添加下面这一行,192.168.1.0 是指内网ip
acl local src 192.168.1.0/24
# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
#http_access allow localnet
http_access allow localhost
# 在这里添加下面这一行,表示允许刚才添加的 acl 规则 local
http_access allow local
默认端口号:3128,也可以自行修改
http_port 3128
3 重启 squid
systemctl restart squid
这里要多等一会儿
4 验证
更换另外一台内网机器
export https_proxy=http://192.168.1.10:3128
export http_proxy=http://192.168.1.10:3128
curl https://www.baidu.com
5 备注,Ubuntu通过代理更新依赖,安装软件
vim /etc/apt/apt.conf
没有这个文件就新建一个,然后添加如下内容
Acquire::http::proxy "http://192.168.1.10:3128/";
Acquire::https::proxy "http://192.168.1.10:3128/";
请不要尝试适应该方式来访问google,伟大防火墙不会通过未加密的代理