yum install -y squid
yum install -y stunnel
配置Squid
htpasswd -c /etc/squid/squid.passwd username
修改Squid默认配置
vi /etc/squid/squid.conf
在 acl CONNECT method CONNECT 增加如下配置,在最上方
auth_param basic program /usr/lib64/squid/basic_ncsa_auth /etc/squid/squid.passwd
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
增加只有认证用户可访问
acl ncsa_users proxy_auth REQUIRED
http_access deny !ncsa_users
http_access allow ncsa_users
重新启动 service squid restart
配置stunnel
生成公钥和私钥
cd /etc/stunnel/
openssl genrsa -out privatekey.pem 2048
openssl req -new -x509 -key privatekey.pem -out publickey.pem -days 10950
cat privatekey.pem publickey.pem >> /etc/stunnel/stunnel.pem