<HTML> <HEAD> <META http-equiv="Content-Type" content="text/html; charset=ISO-2022-JP"> <TITLE> squid $B$K$h$kF)2a7?%W%m%-%7(B </TITLE> </HEAD> <BODY BGCOLOR=white> <A HREF="INDEX-JF.html">JF-INDEX (document list of JF Project)</A> <HR> <H1>squid $B$K$h$kF)2a7?%W%m%-%7(B</H1> <H2>Daniel Kiracofe</H2>v1.3, January 2001 <H2>$BAa@n(B $B?N(B(cz8cb01@linux.or.jp)</H2>V1.3j, 2001$BG/(B02$B7n(B17$BF|(B <P><HR> <EM>$B$3$N%I%-%e%a%s%H$O(B Linux $B$H(B squid $B$@$1$GF)2a7?$N(B HTTP $B%-%c%C%7%s%0%W%m%-%7%5!<%P!<$r9=C[$9$kJ}K!$K$D$$$F@bL@$7$^$9!#(B</EM> <HR> <P> <H2><A NAME="toc1">1.</A> <A HREF="#s1">$B%$%s%H%m%@%/%7%g%s(B</A></H2> <UL> <LI><A HREF="#ss1.1">1.1 $B$40U8+(B</A> <LI><A HREF="#ss1.2">1.2 Copyrights and Trademarks </A> <LI><A HREF="#ss1.3">1.3 #include <disclaimer.h></A> <LI><A HREF="#ss1.4">1.4 $BK]Lu<T<U<-(B</A> </UL> <P> <H2><A NAME="toc2">2.</A> <A HREF="#s2">$BF)2a7?%W%m%-%7$N35MW(B</A></H2> <UL> <LI><A HREF="#ss2.1">2.1 $B;H$&M}M3(B</A> <LI><A HREF="#ss2.2">2.2 $B$3$N%I%-%e%a%s%H$G<h$j07$&HO0O(B</A> </UL> <P> <H2><A NAME="toc3">3.</A> <A HREF="#s3">$B%+!<%M%k$N@_Dj(B</A></H2> <P> <H2><A NAME="toc4">4.</A> <A HREF="#s4">squid $B$N@_Dj(B</A></H2> <P> <H2><A NAME="toc5">5.</A> <A HREF="#s5">Netfilter(ipchains)$B$N@_Dj(B</A></H2> <P> <H2><A NAME="toc6">6.</A> <A HREF="#s6">$B$^$H$a(B</A></H2> <P> <H2><A NAME="toc7">7.</A> <A HREF="#s7">$B$5$i$KCN$k$K$O(B</A></H2> <HR> <H2><A NAME="s1">1.</A> <A HREF="#toc1">$B%$%s%H%m%@%/%7%g%s(B</A></H2> <H2><A NAME="ss1.1">1.1 $B$40U8+(B</A> </H2> <P>$B$3$N(B mini HOWTO $B$K4X$9$k$40U8+$d%U%#!<%I%P%C%/$r4?7^$7$^$9!#Cx<T$G$"$k(B Daniel Kiracofe(drk@unxsoft.com) $B$KD>@\Aw$C$F$b$i$C$F9=$$$^$;$s!#(B <H2><A NAME="ss1.2">1.2 Copyrights and Trademarks </A> </H2> <P>Copyright 2000-2001 by UnxSoft Ltd (www.unxsoft.com) <P>$B!JLuCm!'FI<T$NMxJX$r9M$(F|K\8lLu$rJ;5-$7$^$9$,!"86J8$N(B Copyright $B$,M%@h$7$^$9!K(B <P>This manual may be reproduced in whole or in part, without fee, subject to the following restrictions: <P>$B0J2<$N>r7o$rK~$?$;$P!"$3$NJ8=q$NA4BN$^$?$O0lItJ,$rL5=~$GG[I[$G$-$^$9!#(B <P> <UL> <LI>The copyright notice above and this permission notice must be preserved complete on all complete or partial copies </LI> <LI>Translation to another language is permitted, provided that the author is notified prior to the translation.</LI> <LI>Any derived work must be approved by the author in writing before distribution. </LI> <LI>If you distribute this work in part, instructions for obtaining the complete version of this manual must be included, and a means for obtaining a complete version provided. </LI> <LI>Small portions may be reproduced as illustrations for reviews or quotes in other works without this permission notice if proper citation is given.</LI> </UL> <UL> <LI> $B$9$Y$F$N40A4$J!"$b$7$/$OItJ,E*$J%3%T!<$K(B $B>e5-$NCx:n8"I=<($H$3$N5v2D9pCN$,40A4$KJ]B8$5$l$F$$$J$1$l$P$J$i$J$$!#(B</LI> <LI>$BB>$N8@8l$KK]Lu$9$k:]$O;vA0$KCx<T$KDLCN$9$k$3$H!#(B</LI> <LI>$B$3$N%I%-%e%a%s%H$NGI@8J*$r:n$k>l9g!"G[I[$NA0$KCx<T$K>5G'$rF@$k$3$H!#(B</LI> <LI>$B$3$N%I%-%e%a%s%H$N0lItJ,$rG[I[$9$k>l9g$O!"(B $B40A4$JHG$rF~<j$9$kJ}K!$*$h$S$=$N$?$a$N<j=g$rDs6!$7$J$1$l$P$J$i$J$$!#(B</LI> <LI>$B$b$7E,@Z$J0zMQ85$,I=<($5$l$F$$$k$J$i$P!"$3$N5v2D9pCN$J$7$G(B $B%I%-%e%a%s%H$NC;$+$$ItJ,$rB>$NJ8=qCf$NO@I>$d0zMQ$GNc$H$7$FJ#@=$7$F$bNI$$!#(B</LI> </UL> <P>Exceptions to these rules may be granted for academic purposes: Write to the author and ask. These restrictions are here to protect us as authors, not to restrict you as learners and educators. Any source code (aside from the SGML this document was written in) in this document is placed under the GNU General Public License, available via anonymous FTP from the GNU archive. <P>$B650iL\E*$N>l9g$O$3$l$i$N%k!<%k$KNc30$,G'$a$i$l$k$3$H$,$"$j$^$9$+$i!"Cx<T$K(B $BO"Mm$7$F?R$M$F$/$@$5$$!#$3$l$i$N@)8B$OCx<T$G$"$k2f!9$r<i$k$?$a$N$b$N$G!"3X=,(B $B<T$*$h$S650i<T$N$_$J$5$s$r@)8B$9$k$?$a$N$b$N$G$O$"$j$^$;$s!#$3$N%I%-%e%a%s%H(B $B$N$9$Y$F$N%=!<%9%3!<%I(B ($B$3$N%I%-%e%a%s%H$,=q$+$l$F$$$k(B SGML $B$O=|$/(B) $B$O(B GNU General Public License $B$N2<$K$"$j$^$9!#(BGPL $B$O(B GNU $B%"!<%+%$%V$+$i(B anonymous FTP $B$GF~<j$G$-$^$9!#(B <H2><A NAME="ss1.3">1.3 #include <disclaimer.h></A> </H2> <P>$BL@<(E*!"0EL[E*$K4X$o$i$:!"L5J]>Z$G$9!#(B <H2><A NAME="ss1.4">1.4 $BK]Lu<T<U<-(B</A> </H2> <P>$BK]Lu$N:]$K$O0J2<$NJ}!9$KB??t$NM-1W$J%3%a%s%H!"9;@5$r$7$F$$$?$@$-$^$7$?!#(B $B$"$j$,$H$&$4$6$$$^$7$?!#(B <P> <UL> <LI>$B2CLPCRG7$5$s(B</LI> <LI>$B:4LnIp=S$5$s(B</LI> <LI>$B;32<5AG7$5$s(B</LI> <LI>$BIp0f?-8w$5$s(B</LI> <LI>$BCfLnIpM:$5$s(B</LI> </UL> <HR> <H2><A NAME="s2">2.</A> <A HREF="#toc2">$BF)2a7?%W%m%-%7$N35MW(B</A></H2> <H2><A NAME="ss2.1">2.1 $B;H$&M}M3(B</A> </H2> <P>``$BDL>o(B'' $B%W%m%-%7$rMxMQ$9$k$K$O!"MxMQ<T$,(B web $B%V%i%&%6$G%W%m%-%7$N%[%9%HL>$H(B $B%]!<%HHV9f$r;XDj$7$^$9!#%V%i%&%6$O%W%m%-%7$K%j%/%(%9%H$r9T$J$$!"<!$K%W%m%-%7$O$=$N(B $B%j%/%(%9%H$r%"%/%;%9$5$l$?%5!<%P!<$XE>Aw$7$^$9!#(B $BDL>o$O$3$l$GLdBj$J$/F0$-$^$9$,!";~$K$O0J2<$N$h$&$J>lLL$K=P$/$o$9$3$H$b$"$j$^$9!#(B <P> <UL> <LI>$BM-L5$r8@$o$5$:!"%M%C%H%o!<%/$NMxMQ<T$K%W%m%-%7$r;H$o$;$k$h$&$K$7$?$$!#(B</LI> <LI>$BMxMQ<T$K%W%m%-%7$r;H$o$;$?$$$,!"%W%m%-%7$rMxMQ$7$F$$$k$H$$$&$3$H$r(B $BCN$i$;$?$/$J$$!#(B</LI> <LI>$BMxMQ<T$K%W%m%-%7$r;H$o$;$?$$$,!"2?I4!"2?@iBf$H$$$&(B web $B%V%i%&%6$N@_Dj$rJQ99$9(B $B$k<j4V$r$+$1$?$/$J$$!#(B</LI> </UL> <P>$B$3$&$$$C$?>l9g$KF)2a7?%W%m%-%7$,LrN)$A$^$9!#$3$l$r;H$&$H(B web $B$X$N%j%/%((B $B%9%H$r%W%m%-%7$GF)2aE*$K07$&$3$H$,$G$-$^$9!#$D$^$jMxMQ<T$N%=%U%H%&%'%"(B $B$+$i$OAj<j@h$N%5!<%P!<$XD>@\@\B3$7$F$$$k$h$&$K8+$($^$9$,!"<B:]$K$O%W%m%-(B $B%7%5!<%P!<$X$H@\B3$5$l$F$$$^$9!#(B <P>Cisco $B$N%k!<%?!<$OB?$/$N%9%$%C%A$HF1MM$KF)2a7?$N%W%m%-%7$r%5%]!<%H$7$F$$$^$9$,!"(BLinux $B$b%k!<%?!<(B $B$H$7$FMxMQ$G$-$k>e$K(B TCP $B$N%3%M%/%7%g%s$r%m!<%+%k%]!<%H$X%j%@%$%l%/%H$9$l(B $B$PF)2a7?%W%m%-%7$H$7$FF0:n$7$^$9!#$G$9$,(B web $B%W%m%-%7$,E,@Z$JAj<j@h$N%5!<(B $B%P!<$K@\B3$G$-$k$h$&$K$9$k$?$a$K$O!"%j%@%$%l%/%H$5$l$F$$$k$3$H$r(B web $B%W%m(B $B%-%7$KG'<1$5$;$k:n6H$bI,MW$H$J$j$^$9!#$3$l$K$O0lHL$K0J2<$N(B2 $B$D$NJ}K!$,MQ$$(B $B$i$l$^$9!#(B <P>$B$4MxMQ$N(B web $B%W%m%-%7$,F)2a7?%W%m%-%7$H$7$FMxMQ$G$-$J$$;~$O!"(Bweb $B%W%m%-(B $B%7$NA0$KA4$F$N$d$d$3$7$$:n6H$rBe$o$j$K$d$C$F$/$l$k!"(Btransproxy $B$H$$$&L>(B $BA0$N%G!<%b%s$rMxMQ$G$-$^$9!#(Btransproxy $B$O(B John Saunders $B$K$h$C$F=q$+$l$^(B $B$7$?!#$3$l$O(B <A HREF="ftp://ftp.nlc.net.au/pub/unix/transproxy/">ftp://ftp.nlc.net.au/pub/unix/transproxy/</A> $B$d(B metalab $B$N%_%i!<$+$iF~<j$G$-$^$9!#(Btransproxy $B$K$D$$$F$O$3$N%I%-%e%a%s%H$G(B $B$O=R$Y$^$;$s!#(B <P>($BLuCm!'(Btransproxy $B$N(B web $B%5%$%H$O(B <A HREF="http://www.transproxy.nlc.net.au/">http://www.transproxy.nlc.net.au/</A> $B$K$"$j$^$9(B) <P>$B$h$jNI$$2r7hJ}K!$O!"F)2a7?%W%m%-%7$H$7$FMxMQ$G$-$k(B web $B%W%m%-%7$rF~<j$9(B $B$k$3$H$G$9!#$3$3$G@bL@$9$k$N$O(B squid $B$G$9!#(Bsquid $B$O%*!<%W%s%=!<%9(B $B$N(B Unix $BMQ%-%c%C%7%s%0%W%m%-%7%5!<%P!<$G!"(B <A HREF="http://www.squid-cache.org">http://www.squid-cache.org</A> $B$+$iF~<j$G$-$^$9!#(B <H2><A NAME="ss2.2">2.2 $B$3$N%I%-%e%a%s%H$G<h$j07$&HO0O(B</A> </H2> <P>$B$3$N%I%-%e%a%s%H$G$O<9I.;~E@(B(2001$BG/(B01$B7n(B)$B$G:G?7$N0BDjHG$G$"$k(B squid $B%P!<(B $B%8%g%s(B 2.3 $B$*$h$S(B Linux $B%+!<%M%k%P!<%8%g%s(B 2.4 $B$K$D$$$F=R$Y$F$$$-$^$9$,!"(B squid 2.0 $B$d(B Linux $B%+!<%M%k(B 2.3 $B$G$b$3$N%I%-%e%a%s%H$NFbMF$,DLMQ$9$k$O$:(B $B$G$9!#$=$l0JA0$N%j%j!<%9HG$G$N>pJs$,I,MW$G$"$l$P(B <A HREF="http://www.unxsoft.com">http://www.unxsoft.com</A> $B$+$i%I%-%e%a%s%H$rF~<j$G$-$^$9!#(B <P>($BLuCm!'K]Lu;~E@(B(2001$BG/(B02$B7n(B)$B$G$N0BDjHG$O(B squid 2.3 $B$H(B $B%+!<%M%k(B 2.2.18/2.4.1 $B$G$9(B) <P>$B3+H/HG$N%+!<%M%k$d(B squid $B$r;H$&>l9g!"<+?H$N@UG$$G;H$&$h$&$K$7$F$/$@$5$$!#(B $B$3$N%I%-%e%a%s%H$,=u$1$K$J$k$+$b$7$l$^$;$s$,!"J]>Z$O$G$-$^$;$s!#(B <P>$B$3$N%I%-%e%a%s%H$G$O(B HTTP $B$N%W%m%-%7$@$1$r07$$$^$9!#F)2a7?(B FTP $B%W%m%-%7$K(B $B4X$9$k<ALd$N(B email $B$r$?$/$5$s$b$i$$$^$7$?!#M}O@E*$K$OF)2a7?(B FTP $B%W%m%-%7$O(B $BIT2DG=$G$O$"$j$^$;$s$,(B HTTP $B$h$j(B*$B$+$J$j(B*$BFq$7$$$G$9$7!"$=$N$?$a$K$$$^MxMQ$G(B $B$-$k%D!<%k$K$D$$$FCN$j$^$;$s!#$b$7J}K!$,$o$+$C$?>l9g$O!"$"$J$?<+?H$G(B HOWTO $BJ8=q$r<9I.$9$k$3$H$r$*4+$a$7$^$9!#(B <P> <HR> <H2><A NAME="s3">3.</A> <A HREF="#toc3">$B%+!<%M%k$N@_Dj(B</A></H2> <P>$B$^$:!"%+!<%M%k$KE,@Z$J%*%W%7%g%s$,;XDj$5$l$F$$$k$3$H$r3NG'$9$kI,MW$,$"$j(B $B$^$9!#%G%#%9%H%j%S%e!<%7%g%s$KF1:-$5$l$F$$$k%+!<%M%k$r;H$C$F$$$k>l9g$K$O!"(B $BF)2a7?%W%m%-%7$,L58z$K$J$C$F$$$k$+$b$7$l$^$;$s!#$h$/J,$+$i$J$$;~$K$O$3$N(B $B%;%/%7%g%s$OFI$_Ht$P$7$F$7$^$&$N$,NI$$$G$7$g$&!#<!$N%;%/%7%g%s$G<B9T$9$k(B $B%3%^%s%I$,L/$J%(%i!<$r=PNO$7$?>l9g!"$*$=$i$/%+!<%M%k$,@5$7$/@_Dj$5$l$F$$(B $B$^$;$s!#(B <P>($BLuCm!'(B Debian (potato) $B$N%+!<%M%k$G$b!"L58z$K$J$C$F$$$k$=$&$G$9(B) <P>$BF)2a7?%W%m%-%7$r;H$($k$h$&$K%+!<%M%k$,@_Dj$5$l$F$$$J$$;~$K$O:F%3%s%Q%$%k$9(B $B$kI,MW$,$"$j$^$9!#%+!<%M%k$N:F%3%s%Q%$%k$N<jB3$-$O$d$d$3$7$/(B($B>/$J$/$H$b!"(B $B=i$a$F$N?M$K$O(B)$B!"$^$?$3$N%I%-%e%a%s%H$NHOaF$G$O$"$j$^$;$s!#%+!<%M%k%3%s%Q(B $B%$%k$K4X$9$k>pJs$,I,MW$G$7$?$i(B <A HREF="http://metalab.unc.edu/pub/Linux/docs/HOWTO/Kernel-HOWTO">http://metalab.unc.edu/pub/Linux/docs/HOWTO/Kernel-HOWTO</A> $B$r;2>H$7$F(B $B$/$@$5$$!#(B <P>($BLuCm!'(B $BF|K\8lLu$O(B <A HREF="http://www.linux.or.jp/JF/JFdocs/Kernel-HOWTO.html">http://www.linux.or.jp/JF/JFdocs/Kernel-HOWTO.html</A> $B$K$"$j$^$9(B) <P>$B@_Dj$9$kI,MW$N$"$k9`L\$O<!$NDL$j$G$9(B($B$I$l$b%b%8%e!<%k$K$9$k$3$H$O$G$-$^$;$s(B)$B!#(B <P> <UL> <LI>Networking support($B%+!<%M%k(B2.4$B$N$_(B)</LI> <LI>Sysctl support</LI> <LI>Network packet filtering($B%+!<%M%k(B2.4$B$N$_(B)</LI> <LI>TCP/IP networking</LI> <LI>Connection tracking (menuconfig $B$N(B``IP: Netfilter Configuration''$B$N2<$G(B $B$9(B)($B%+!<%M%k(B2.4$B$N$_(B)</LI> <LI>IP: firewalling($B%+!<%M%k(B2.2$B$N$_(B)</LI> <LI>IP tables support($B%+!<%M%k(B2.4$B$N$_(B)</LI> <LI>IP: always defragment($B%+!<%M%k(B2.2$B$N$_(B)</LI> <LI>Full NAT($B%+!<%M%k(B2.4$B$N$_(B)</LI> <LI>IP: transparent proxy support($B%+!<%M%k(B2.2$B$N$_(B)</LI> <LI>REDIRECT target support($B%+!<%M%k(B2.4$B$N$_(B)</LI> <LI>/proc filesystem support</LI> </UL> ``Fast switching''$B$O(B NO $B$K$9$kI,MW$,$"$j$^$9(B($B%+!<%M%k(B2.4$B$N$_(B) <P>$B:n@.$7$?%+!<%M%k$+$i5/F0$7$?$i(B IP $B%U%)%o!<%G%#%s%0$rM-8z$K$9$kI,MW$,$"$k$G(B $B$7$g$&!#(BIP $B%U%)%o!<%G%#%s%0$9$k$H%^%7%s$r%k!<%?!<$H$7$FF0:n$7$^$9!#IaDL$N(B $B%f!<%6!<$O$3$N5!G=$,I,MW$J$$$?$a!"%G%U%)%k%H$G$O$3$N5!G=$OL58z$K$J$C$F$$$^(B $B$9$+$i!"<B9T;~$KL@<(E*$KM-8z$K$9$kI,MW$,$"$j$^$9!#$?$@$7%G%#%9%H%j%S%e!<%7%g(B $B%s$K$h$C$F$O4{$KM-8z$K$J$C$F$$$k$+$b$7$l$^$;$s!#3NG'$9$k$K$O(B ``cat /proc/sys/net/ipv4/ip_forward'' $B$r<B9T$7$^$9!#(B``1'' $B$,I=<($5$l$l$PM-8z$K$J$C(B $B$F$$$^$9!#$=$&$G$J$+$C$?$J$i(B ``echo '1' > /proc/sys/net/ipv4/ip_forward'' $B$r<B9T$7$^$9!#$=$7$F(B /etc/rc.d/ $B$K$"$k5/F0(B $B;~$K<B9T$5$l$k%9%/%j%W%H$K$3$N%3%^%s%I$rDI2C$9$k$HNI$$$G$7$g$&!#(B <P>($BLuCm!'(BRedhat $B7O$G$"$l$P(B /etc/rc.d/rc.local $B$K5-=R$9$k$+!"$"$k$$$O(B /etc/sysconfig/network $B$G(B FORWARD_IPV4=true $B$r5-=R$7$F$*$1$PNI$$$G$7$g$&!#(B Debian $B$N>l9g!"(Bpotato $B0JA0$N>l9g$O>e5-$HF1MM$K(B ``echo '1' > /proc/sys/net/ipv4/ip_forward'' $B$r<B9T$7$^$9!#(Bpotato $B0J9_$G$O(B /etc/network/options $B$K(B ip_forward=no $B$H$$$&$N$,$"$k$N$G!"$3$3$r(B ip_forward=yes $B$KJQ99$9$l$P(B /etc/init.d/networking $B$H$$$&%9%/%j%W%H$,(B ``echo '1' > /proc/sys/net/ipv4/ip_forward'' $B$r$d$C$F$/$l$^$9(B) <HR> <H2><A NAME="s4">4.</A> <A HREF="#toc4">squid $B$N@_Dj(B</A></H2> <P>squid $B$r@_Dj$7!"<B9T$7$^$7$g$&!#:G?7$N(B tarball $B$r(B <A HREF="http://www.squid-cache.org">http://www.squid-cache.org</A> $B$+$i%@%&%s%m!<%I$7$^$9!#3+H/HG$G$"$k(B DEVEL $B%P!<(B $B%8%g%s$G$O$J$/!"0BDjHG$G$"$k(B STABLE $B%P!<%8%g%s$G$"$k$3$H$r3NG'$7$F$/$@$5$$!#(B $B<9I.;~E@(B(2001$BG/(B02$B7n(B)$B$N:G?7HG$O(B squid-2.3.STABLE4.tar.gz $B$G$9!#(B <P>$B$5$F!"%@%&%s%m!<%I$7$?%U%!%$%k$r(B(``tar -xzf <$B%U%!%$%kL>(B>'' $B$r;HMQ$7(B $B$F(B)$BE83+$7$F(B autoconf $B%9%/%j%W%H(B(``./configure'') $B$r<B9T$7!"%3%s%Q%$%k(B (``make'')$B$7$F%$%s%9%H!<%k(B(``make install'')$B$7$^$7$g$&!#(B <P>$B<!$K%G%U%)%k%H$N(B squid.conf $B%U%!%$%k(B($BJQ99$7$J$$8B$j%$%s%9%H!<%k@h$O(B /usr/local/squid/etc/squid.conf $B$G$9(B)$B$rJT=8$7$^$9!#(Bsquid.conf $B$K$OHs>o$KB?$/(B $B$N%3%a%s%H$,4^$^$l$F$$$^$9!#<B:]!"(Bsquid $B$K4X$9$k:G$bNI$$%I%-%e%a%s%H$O(B squid.conf $B$G$9!#A4$F$N@_Dj$,=*$o$j5/F0$7$?8e$K!"$b$&0lEYA4BN$rFI$_$J$*$7(B $B$?J}$,NI$$$G$9$,!":#$N=j$O:G>.8B$N@_Dj$@$1$r9T$J$$$^$7$g$&!#<!$N$h$&$J%G%#(B $B%l%/%F%#%V$rC5$7$F%3%a%s%H(B($B9TF,$N(B #)$B$r30$7!"E,@Z$JCM$KJQ99$7$^$9!#(B <P> <UL> <LI>httpd_accel_host virtual</LI> <LI>httpd_accel_port 80</LI> <LI>httpd_accel_with_proxy on</LI> <LI>httpd_accel_uses_host_header on</LI> </UL> <P>$B:G8e$K(B http_access $B%G%#%l%/%F%#%V$r8+$F$_$^$7$g$&!#%G%U%)%k%H$G$ODL>o(B ``http_access deny all'' $B$K$J$C$F$$$k$?$a(B squid $B$X$N%"%/%;%9$OC/$b$G$-$J$$(B $B>uBV$H$J$C$F$$$^$9!#:#$N=j$O$3$l$r(B ``http_access allow all'' $B$KJQ99$7$F$b(B $B9=$$$^$;$s$,!"<B:]$K1?MQ$9$k:]$K$O(B ACL(Access Control List) $B$K$D$$$F%I%-%e(B $B%a%s%H$rFI$_!"%m!<%+%k$N%M%C%H%o!<%/(B($B$J$I$N8BDj$5$l$?HO0O(B)$B$N%f!<%6!<$@$1$,(B $BMxMQ$G$-$k%-%c%C%7%e$r@_Dj$7$?$[$&$,NI$$$G$7$g$&!#$I$&$G$b$$$$$3$H$H;W$o$l(B $B$k$+$bCN$l$^$;$s$,!"%-%c%C%7%e$X$N%"%/%;%9$K$O2?$i$+$N@)8B$r$+$1$?J}$,NI$$(B $B$G$9!#%U%#%k%?%j%s%0$r9T$J$C$F$$$k%U%!%$%"%&%)!<%k(B($B%]%k%N$N%U%#%k%?!<$d8@(B $BO@$,$=$l$[$I<+M3$G$J$$9q$N%U%#%k%?!<$J$I(B)$B$NCf$K$$$k?M$O!"EY!9%"%/%;%9@)8B(B $B$N$J$$%W%m%-%7$r(B ``$B>h$C$H$C$F(B'' $B%P%s%II}$r?)$$$D$V$7$F$7$^$$$^$9!#(B <P>$B%-%c%C%7%e%G%#%l%/%H%j$r(B ``squid -z'' $B$G=i4|2=$7$^$9(B(squid $B$N%P!<%8%g%s(B $B$,(B 1.1.16 $B0J9_$N;~$@$1$G$9!#$=$l$h$j$bA0$NHG$N;~$O!"Ht$P$7$F<!$r9T$J$C$F(B $B$/$@$5$$(B)$B!#(B <P>/usr/local/squid/bin/ $B%G%#%l%/%H%j$N(B RunCache $B%9%/%j%W%H$G(B squid $B$r5/F0$7(B $B$^$7$g$&!#(Bweb $B%V%i%&%6$N%W%m%-%7@_Dj$r(B squid $B$NF0:n$7$F$$$k%^%7%s$N(BIP $B%"%I(B $B%l%9$*$h$S%]!<%H(B 3128($B%]!<%HHV9f$r%G%U%)%k%H$+$iJQ99$7$F$$$J$$>l9g(B)$B$K@_Dj(B $B$9$l$P!"(Bsquid $B$rIaDL$N%W%m%-%7$H$7$F;HMQ$G$-$k$O$:$G$9!#(B <P>$B@_Dj$K4X$9$k$h$j>\:Y$J>pJs$O(B <A HREF="http://www.squid-cache.org">http://www.squid-cache.org</A> $B$N(B squid FAQ $B$r;2>H$7$F$/$@$5$$!#(B <P>($BLuCm!'(B <A HREF="http://www.pa.airnet.ne.jp/~kaz/sysadm/squid/index.html">squid Internet Object Cache $B4XO"$N%Z!]%8(B</A> $B$d(B <A HREF="http://vcsel-www.pi.titech.ac.jp/cache/Squid-FAQ-j.html">squid FAQ $BF|K\8lHG(B</A> $B$b;29M$K$J$k$G$7$g$&!#(B <P> <HR> <H2><A NAME="s5">5.</A> <A HREF="#toc5">Netfilter(ipchains)$B$N@_Dj(B</A></H2> <P>($BLuCm!'(Bipchains $B$K4X$9$k@bL@$O%+!<%M%k(B 2.2 $B7O$,BP>]$G$9!#%+!<%M%k(B 2.4 $B7O$rMxMQ$9(B $B$k>l9g!"4pK\E*$K$O(B netfilter($B$D$^$j(B iptables$B%3%^%s%I(B)$B$r;HMQ$7$F$/$@$5$$!#(B $B$b$7%+!<%M%k(B 2.4 $B7O$G$b(B ipchains $B$r;H$$$?$$>l9g!"(Bmodprobe ipchains.o $B$9$k(B $B$3$H$K$h$j(B ipchains $B$rMxMQ$G$-$^$9!#$=$N>l9g$O%+!<%M%k(B 2.4 $B7O$K1w$$$F$b(B ipchains $B$K4X$9$k@bL@$r;2>H$7$F$/$@$5$$(B) <P>ipchains $B$O%+!<%M%k(B 2.2 $B%Y!<%9$N!"$[$\A4$F$N%G%#%9%H%j%S%e!<%7%g%s$G%$%s%9(B $B%H!<%k:Q$_$G$9!#$b$7%$%s%9%H!<%k$5$l$F$$$J$$;~$K$O(B <A HREF="ftp://ftp.rustcorp.com/ipchains/">ftp://ftp.rustcorp.com/ipchains/</A> $B$+$iF~<j$G$-$^$9!#(Bipchains $B$OHs>o(B $B$K%Q%o%U%k$J%D!<%k$G$9$+$i!"$3$3$G$O>e$CLL$7$+<h$j>e$2$^$;$s!#>\:Y$K4X$7$F(B $B$O(B <A HREF="http://www.rustcorp.com/linux/ipchains/HOWTO.html">ipchains HOWTO</A> $B$r;2>H$7$F$/$@$5$$!#(B <P>($BLuCm!'(B <A HREF="http://www.linux.or.jp/JF/JFdocs/ipchains-mini-HOWTO.html">http://www.linux.or.jp/JF/JFdocs/ipchains-mini-HOWTO.html</A> $B$H$$$&$b$N(B $B$b$"$j$^$9!#$3$l$OK]LuHG$G$O$J$/!"$*$*$D$+$^$5$R$H$5$s$N%*%j%8%J%k$G$9(B) <P>iptables $B$O(B ipchains $B$rCV$-49$($k$b$N$G!"(BLinux kernel 2.4 $B$h$jF3F~$5$l$^(B $B$7$?!#$4MxMQ$N%G%#%9%H%j%S%e!<%7%g%s$N%+!<%M%k$,(B 2.4 $B$N>l9g!"4{$K(B iptables $B$O%$%s%9%H!<%k$5$l$F$$$k$O$:$G$9(B($BLuCm!'(B2001$BG/(B02$B7n8=:_$G$OLu<T$,(B $BCN$k8B$j!"(BSuSE 7.1 $B$H(B RedHat 7.0.x $B$@$1$G$9(B)$B!#%$%s%9%H!<%k$5$l$F$$$J$$;~$K$O(B <A HREF="http://netfilter.kernelnotes.org/">netfilter.kernelnotes.org</A> $B$+$iF~<j$7$F$/$@$5$$!#I.<T$OCN$j$^$;$s(B $B$,!"%P%$%J%j$N(B RPM $B$b$I$3$+$K$"$k$O$:$G$9!#(Bnetfilter $B$N%5%$%H$K$O>\:Y$J%I(B $B%-%e%a%s%H$b$"$j$^$9!#(B <P>$B%k!<%k$r@_Dj$9$k$K$O(B squid $B$,F0:n$7$F$$$k%]!<%HHV9f(B($B%G%U%)%k%H(B $B$N(B 3128 $B$H$7$^$9(B)$B$rCN$C$F$*$/I,MW$,$"$j$^$9!#(B <P>$B$^$?(B ipchains $B$N>l9g$O(B LAN $BB&$N(B IP $B%"%I%l%9(B(192.168.1.1 $B$H$7$^$9(B)$B$,!"(B iptables $B$N>l9g$K$O%W%m%-%7$r9T$&%Q%1%C%H$,Aw$i$l$F$/$k%$%s%?!<%U%'!<%9(B ($B$3$3$G$O(B eth0 $B$H$7$^$9(B)$B$,I,MW$H$J$j$^$9!#(B <P>ipchains $B$r;H$&>l9g(B($BLuCm!'$D$^$j%+!<%M%k(B 2.2 $B$"$k$$$O%+!<%M%k(B 2.4 $B7O$G(B ipchains.o $B$r;H$&>l9g(B)$B$K$O;O$a$K!"(B $B$3$N%5!<%P!<7PM3$G30It$N(B web $B%5!<%P!<$X=P$F$$$/A4$F$N%Q%1%C%H$r5v(B $B2D$7$^$9!#@_Dj$O(B loopback $B%$%s%?!<%U%'!<%9$H%$!<%5%M%C%H%$%s%?!<%U%'!<%9$N(B $BN>J}$G9T$J$C$?J}$,NI$$$G$7$g$&!#%W%m%-%7%5!<%P!<>e$K(B web $B%5!<%P!<$,F0:n$7(B $B$F$$$J$/$F$b!"$3$3$G$N:n6H$OHt$P$9$Y$-$G$O$"$j$^$;$s!#(B $B$3$3$G$N%k!<%k$,@_Dj$5$l$F$$$J$$$H!"%W%m%-%7$,<+?H$X@\B3$7$h$&$H$7$?>l9g(B $B$KL58B%k!<%W$K$J$C$F$7$^$$$^$9$+$i!#<!$N%3%^%s%I$r<B9T$7$^$7$g$&!#(B <P> <UL> <LI>ipchains -A input -p TCP -d 127.0.0.1/32 www -j ACCEPT</LI> <LI>ipchains -A input -p TCP -d 192.168.1.1/32 www -j ACCEPT</LI> </UL> <P>$BF)2a7?%W%m%-%7$N$?$a$NKbK!$N<vJ8$O$3$l$G$9!#(B <P> <UL> <LI>ipchains -A input -p TCP -d any/0 www -j REDIRECT 3128</LI> </UL> <P>$B$J$*(B iptables $B$r;H$&>l9g$O2<5-$N%3%^%s%I$@$1$G9=$$$^$;$s!#(B <P> <UL> <LI>iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128</LI> </UL> <P> <P>$B>e5-$N%3%^%s%I$r(B /etc/rc.d/ $B$K$"$kE,@Z$J5/F0%9%/%j%W%H$KDI2C$7$^$7$g$&!#(B $B%+!<%M%k(B2.2$B$G$O%U%)%o!<%I$N%k!<%W$rKI$0$?$a$N%3%^%s%I$,I,MW$G$7$?$,!"%+!<(B $B%M%k(B2.4$B$N>l9g$OFC$K2?$b$7$J$/$F$bCx<T$N4D6-$G$O%k!<%W$OH/@8$7$^$;$s$G$7(B $B$?!#$b$7H/@8$7$?>l9g$K$O(B drk@unxsoft.com $B$^$G%a!<%k$G$*CN$i$;$/$@$5$$!#(B <P>($BLuCm!'(B ipchains $B$N;~$K%k!<%W$,H/@8$9$k$N$O!"(BREDIRECT $B$,;XDj$5$l$F$$$k$H(B $B%j%b!<%H%[%9%H$X$N%Q%1%C%H$G$"$C$F$b!"%m!<%+%k$X%j%@%$%l%/%H$5$l$k$+$i$G$9(B) <HR> <H2><A NAME="s6">6.</A> <A HREF="#toc6">$B$^$H$a(B</A></H2> <P>$B:#$^$G$N=j$,A4$F$&$^$/$$$C$?$i!"B>$N%^%7%s$N@_Dj$r9T$J$$$^$7$g$&!#(B $B%2!<%H%&%'%$$r(B squid $B$NF0:n$7$F$$$k%^%7%s$N(B IP $B$KJQ99$7!"(Bweb $B$r2s$C$F$_(B $B$^$9!#%m%0%U%!%$%k(B /usr/local/squid/logs/access.log $B$r8+$F!"30It$XD>@\$G(B $B$O$J$/!"K\Ev$K%W%m%-%77PM3$G%j%/%(%9%H$,%U%)%o!<%I$5$l$F$$$k$+$I$&$+$r3N(B $BG'$7$^$7$g$&!#(B <P>($BLuCm!'(B Debian $B$d(B Redhat $B7O$N>l9g(B /var/log/squid/access.log $B$G$9(B) <HR> <H2><A NAME="s7">7.</A> <A HREF="#toc7">$B$5$i$KCN$k$K$O(B</A></H2> <P>$B$5$i$J$k=u$1$,I,MW$J;~$K$O(B <A HREF="http://www.squid-cache.org">http://www.squid-cache.org</A> $B$G(B squid FAQ $B$d(B squid $B%a!<%j%s%0%j%9%H$r;2>H$7$F$/$@$5$$!#$^$?!";d(B(drk@unxsoft.com) $B$K%a!<(B $B%k$7$F$b9=$$$^$;$s!#;~4V$,5v$;$P(B($B5v$5$J$$;~$b$"$j$^$9(B)$B!"<ALd$KEz$($h$&$H;W(B $B$$$^$9!#$=$N>l9g$O!"(B``ipchains -L''$B$"$k$$$O(B``iptables -t nat -L''$B$N=PNO$*$h$S@_Dj(B $B%U%!%$%k$N4X78$9$kItJ,$r(B email $B$K5-=R$9$k$h$&$K$7$F$/$@$5$$!#$=$l$,L5$$$H!"(B $B$*$=$i$/$"$^$jB?$/$N$3$H$O$o$+$i$J$$$G$7$g$&$+$i!#(B <HR> sgml21html conversion date: Sat Mar 31 17:59:24 JST 2001 </BODY> </HTML>