{{beinhaltet Abweichungen von der Realität}}
[[Server/freebert]] is gone!
== Hardware ==
Virtualisiert durch [[Server/freebert/FreeBSD]]
== Software ==
* FreeBSD Jail
* apache 2.4
* collectd 5
== Verwendungszweck ==
* proxy.pac für Squid Jail / tor Jail
* SNMP Auswertung
* ReverseProxy für /How_to_fix_your_hq_network/
== JAIL: Collectd Anpassung ==
vi /usr/local/etc/collectd.conf
LoadPlugin snmp
Type "if_octets"
Table true
Instance "IF-MIB::ifDescr"
Values "IF-MIB::ifInOctets" "IF-MIB::ifOutOctets"
Address "172.22.99.6"
Version 2
Community "public"
Collect "std_traffic"
Interval 120
== Collectd Auswertung ==
http://watchbert.hq.c3d2.de/cgi-bin/collection.cgi
== ReverseProxy für How_to_fix_your_hq_network ==
vi /usr/local/etc/apache24/httpd.conf
ProxyRequests off
ProxyPass /wiki/ https://wiki.c3d2.de/
ProxyPassReverse /wiki/ https://wiki.c3d2.de/
ProxyPass /How_to_fix_your_hq_network/ https://wiki.c3d2.de/How_to_fix_your_hq_network/
ProxyPassReverse /How_to_fix_your_hq_network/ https://wiki.c3d2.de/How_to_fix_your_hq_network/
SSLProxyEngine On
# ProxyPreserveHost on
# ProxyVia On
Order deny,allow
allow from all
== proxy.pac ==
function FindProxyForURL(url, host) {
squid = "PROXY 172.22.99.53:3128; DIRECT";
tor = "SOCKS 172.22.99.75:9050";
if (shExpMatch(host,"*.onion")) {
return tor;
}
if ((host == "172.22.99.54") ||
(host == "watchbert.hq.c3d2.de")) {
return "DIRECT";
}
// no proxy for local hosts without domain:
if(isPlainHostName(host)) return direct;
// //We only cache http
// if (
// url.substring(0, 4) == "ftp:" ||
// url.substring(0, 6) == "rsync:"
// )
// return direct;
// proxy everything else:
return proxy;
}
== Log ==
* 05.06.2014 - Tor.onion per proxy.pac
* 17.05.2014 - Wiki ReverseProxy für kaputtes .1er Gateway
* 16.04.2014 - einfaches Basis Setup
[[Kategorie:Infrastruktur]]