{"id":90,"date":"2011-02-09T15:06:46","date_gmt":"2011-02-09T15:06:46","guid":{"rendered":"http:\/\/gigihfordanama.wordpress.com\/?p=90"},"modified":"2012-08-08T00:14:48","modified_gmt":"2012-08-08T00:14:48","slug":"block-mac-address-freebsdsquid-2-6-xx","status":"publish","type":"post","link":"https:\/\/dosen.unila.ac.id\/gigih\/2011\/02\/09\/block-mac-address-freebsdsquid-2-6-xx\/","title":{"rendered":"Block MAC Address FREEBSD+SQUID 2.6.xx"},"content":{"rendered":"<p>Banyak pertanyaan mengenai blocking MAC address pake SQUID dan FreeBSD<\/p>\n<p>berikut sedikit share pengalaman &#8220;HOW TO&#8221; compile SQUID featuring mac blocking<\/p>\n<ul>\n<li>Masuk ke direktory ports<\/li>\n<li>router-inherent# cd \/usr\/ports\/www\/squid<\/li>\n<\/ul>\n<p>router-inherent# make config<\/p>\n<p>aktifkan enable ARP ACL dan CARP<!--more-->\u250c\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2510<br \/>\n\u2502\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Options for squid 2.6.13\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502<br \/>\n\u2502 \u250c\u2500\u2500\u2500\u2500^(-)\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2510 \u2502<br \/>\n\u2502 \u2502[X] SQUID_WCCPV2\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enable Web Cache Coordination Prot. v2 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_STRICT_HTTP\u00a0\u00a0\u00a0 Be strictly HTTP compliant\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_IDENT\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enable ident (RFC 931) lookups\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_REFERER_LOG\u00a0\u00a0\u00a0 Enable Referer-header logging\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_USERAGENT_LOG\u00a0 Enable User-Agent-header logging\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_ARP_ACL\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enable ACLs based on ethernet address\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_PF\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enable transparent proxying with PF\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_IPFILTER\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enable transp. proxying with IPFilter\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_FOLLOW_XFF\u00a0\u00a0\u00a0\u00a0 Follow X-Forwarded-For headers\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_ICAP\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enable ICAP client functionality\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_AUFS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enable the aufs storage scheme\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_COSS\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enable the COSS storage scheme\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_KQUEUE\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Use kqueue(2) instead of poll(2)\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_LARGEFILE\u00a0\u00a0\u00a0\u00a0\u00a0 Support log and cache files &gt;2GB\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u2502 \u2502[X] SQUID_STACKTRACES\u00a0\u00a0\u00a0 Create backtraces on fatal errors\u00a0\u00a0\u00a0\u00a0\u00a0 \u2502 \u2502<br \/>\n\u251c\u2500\u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518\u2500\u2524<br \/>\n\u2502\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 [\u00a0 OK\u00a0 ]\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cancel<\/p>\n<p>&nbsp;<\/p>\n<ul>\n<li>router-inherent# make &amp;&amp; make install<\/li>\n<li>Tungguin sekitar 2 menit<\/li>\n<li>router-inherent# squid -z (Create cache direktori)<\/li>\n<li>Done&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;.<\/li>\n<\/ul>\n<p>Selamat mesin anda sudah berhasil mengaktifkan fitur mac address blocking<img decoding=\"async\" src=\"http:\/\/unilanet.unila.ac.id\/%7Egigih\/mambots\/editors\/tinymce\/jscripts\/tiny_mce\/plugins\/emotions\/images\/smiley-cool.gif\" border=\"0\" alt=\"Cool\" \/> <img decoding=\"async\" src=\"http:\/\/unilanet.unila.ac.id\/%7Egigih\/mambots\/editors\/tinymce\/jscripts\/tiny_mce\/plugins\/emotions\/images\/smiley-cool.gif\" border=\"0\" alt=\"Cool\" \/> <img decoding=\"async\" src=\"http:\/\/unilanet.unila.ac.id\/%7Egigih\/mambots\/editors\/tinymce\/jscripts\/tiny_mce\/plugins\/emotions\/images\/smiley-cool.gif\" border=\"0\" alt=\"Cool\" \/> <img decoding=\"async\" src=\"http:\/\/unilanet.unila.ac.id\/%7Egigih\/mambots\/editors\/tinymce\/jscripts\/tiny_mce\/plugins\/emotions\/images\/smiley-cool.gif\" border=\"0\" alt=\"Cool\" \/><br \/>\ntinggal atur configurasi akses list si squid di squid.conf<\/p>\n<p>Ini COntoh konfig di Mesin Gue :<\/p>\n<p>&nbsp;<\/p>\n<p>http_port 3128 transparent # Enable transparent PROXY<br \/>\nicp_port 3130<br \/>\nudp_incoming_address 0.0.0.0<br \/>\nudp_outgoing_address 255.255.255.255<\/p>\n<p>=========================================================<br \/>\n### Trial Lempar cache via telkom, uncomment this to forward\u00a0 via VSAT<br \/>\n#cache_peer 192.168.1.245\u00a0\u00a0\u00a0\u00a0 parent\u00a0\u00a0\u00a0 3128\u00a0 3130\u00a0 default<br \/>\n&#8230; !!<\/p>\n<p>CUTED&#8230;&#8230;&#8230;&#8230;&#8230;.<\/p>\n<p>&#8230; !!<\/p>\n<p>## Tambahin acl untuk mac address<\/p>\n<p>## Syntax\u00a0 : acl\u00a0 nama-acl arp mac-address-yang-mo-di-blok<\/p>\n<p>acl MacSiBolang arp 00:18:F3:7E:BF:61\u00a0 ## -&gt; alamat arp mesti dipisahkan dengan tanda :<\/p>\n<p>http_acccess deny MacSiBolang<\/p>\n<p>========================================================<\/p>\n<p>contoh diatas merupakan konfigurasi minimal yang bisa dipake \ud83d\ude42<\/p>\n<p>&nbsp;<\/p>\n<p>atau kalo anda punya beberapa mac address yang perlu diblok bisa langsung dibuat di dalam satu file.<\/p>\n<p>Misal :<\/p>\n<p>router-inherent# vi \/usr\/local\/etc\/squid\/macbbs.acl<br \/>\n00:18:F3:7E:BF:61<br \/>\n00:18:F3:7E:BF:62<br \/>\n00:08:c7:fa:30:0b\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # 192.168.1.129 harid<br \/>\n00:18:f3:bf:de:6d\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # 192.168.1.206 erik (tim redaksi)<br \/>\n00:0e:2e:33:5c:13\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # 192.168.1.208 \/\/ Pak Komaruddin<br \/>\n00:0e:2e:33:5c:13\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # 192.168.1.201 \/\/ Mba Fierda<br \/>\n00:0e:2e:33:9e:af\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # 192.168.1.128 \/\/ lukman (ADM)<\/p>\n<p>wq!<\/p>\n<p>tinggal modif acl yang diarahkan ke file yang dicreate tadi<\/p>\n<p>acl macbbs arp &#8220;\/usr\/local\/etc\/squid\/macbbs.acl&#8221;<\/p>\n<p>Jangan lupa tanda kutip &#8221;\u00a0 sebelum dan sesudah file config<\/p>\n<p>trus reload dah squidnya<\/p>\n<p>squid -k reload<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>YUps Beres,,,,,,,,,,,,,,,,\u00a0 Kalo anda masih penasaran bisa tinggalkan komentar dibawah ini<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Banyak pertanyaan mengenai blocking MAC address pake SQUID dan FreeBSD berikut sedikit share pengalaman &#8220;HOW TO&#8221; compile SQUID featuring mac blocking Masuk ke direktory ports router-inherent# cd \/usr\/ports\/www\/squid router-inherent# make config aktifkan enable ARP ACL dan CARP<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1348,5],"tags":[],"class_list":["post-90","post","type-post","status-publish","format-standard","hentry","category-kiat-sukses-menjadi-seorang-network-engineer-2","category-old-post-dari-unilanet"],"_links":{"self":[{"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/posts\/90"}],"collection":[{"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/comments?post=90"}],"version-history":[{"count":0,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/posts\/90\/revisions"}],"wp:attachment":[{"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/media?parent=90"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/categories?post=90"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/tags?post=90"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}