How to configure web proxy in ClearOS
In this tutorial i will demonstrate step by step configuration of web proxy in ClearOS.
- A ClearOS installed sytem with minimum 2 nic cards. if you don't how to install ClearOS the read this article here
- Installed Web Proxy Server from ClearOS Marketplace.
First of all I will define what is Web Proxy
A web proxy is a types of proxy server. A web proxy acts as a gateway for web requests originating from the Local Area Network. It sit between user and internet for responding the user request by accessing resources from cached web pages available on remote web servers. This not only save resources but also response very quickly if that page available in its cache. It logging website visits by user and/or IP and implementing access control restrictions.
Let start our configuration
Type https://x.x.x.x:81 in your browser where x.x.x.x is IP address of ClearOS.
After Typing IP address you get login page put username and password . when username is correct you go to home page of clearos.
Go to Gateway and then go to web proxy option as describe below in picture
In Picture you have a Authentication Tab, Click on edit button , after clicking you get these option
- Transparent + No User Authentication
- Non-Transparent + User Authentication
- Non-Transparent + No User Authentication
Transparent + No User Authentication :- It means that you don't have to configure proxy setting in web browser and its don't ask for user authentication for accessing web services.
Non-Transparent + User Authentication :- It means that you have to configure proxy setting in web browser and it also ask for user authentication for accessing web services. User should be created first before implementing this method. For Creating user go to System Option.
Non-Transparent + No User Authentication :- It means that you have to configure proxy setting in web browser but it not ask for user authentication for accessing web services.
Here i am selecting Non-Transparent + No User Authentication, and Click Update button.
Change Cache size according to your need by clicking edit button in setting section, you can select upto 900 GB in size. select at least 10 to 40 GB.
After web proxy configuration
we adding some rule for allow and deny PC to reach internet or other network.
Go to Gateway and then go to Web Access Control option as describe below in picture.
Before Adding Rule in Access Control List, we have to first add Time Period in Time of Day Definitions option.
In Time of Day Definitions option click Add button
Type Name of Time Period like Lunch Time, holiday etc. My Time period name is Lunch.
Set you Start Time when Rule will be start, End Time when rule will be discard.
Select Day from list of 7 days in which rule will be start, Press CTRL for multiple selection. Click Add button.
After Adding Time of Day Definitions, Let start adding some rule in Access Control List
Click Add button
Type the Name of the rule in name section
Select Allow/Deny in Type section, In Time of Day select time period
In Restriction you get two options
- Outside time restriction :- This say that rule should be apply outside this time period.
- Within time restriction :- This say that rule should be apply within this time period.
I have selected Within time restriction
In Method of Identification you get three options
- Group :- Select Group if you have created group of users in System section and want to apply rule on that group of users.
- IP Address:- Select IP address if you want to apply rule on particular ip address.
- MAC Address:- Select MAC address if you want to apply rule on particular MAC address.
Here i have selected IP Address and type ip addresses according to my need.
If you have Selected Deny statement and want to allow some specific site to allow for that user then go to Web Proxy.
In Rule Option Click Edit on Authentication Exception Sites
Type Website/IP Address then click Add
You can add more than 1 site in Authentication Exception Sites to fulfill requirements.
That’s It! we are ending this configuration here.
Thanks for reading this article. We believe that every article always has a scope for improvement. Your little effort and time will make this article more useful for other users. Share your tips in the comments, and I’ll use the best ones in a future post.
Please like and share this page.