Scribd
Upload
245 views

Modul HTTP Proxy

HTTP proxy is used to cache HTTP data to improve access speed, intercepting client requests and answering from cache if the data has been requested before. It can function as a regular or transparent proxy with access lists, cache lists, and direct lists to filter requests. The document provides instructions for configuring an HTTP proxy on a MikroTik router to block specific websites and file types for caching and downloading.

Uploaded by

Andi Ruswendi
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
245 views

Modul HTTP Proxy

HTTP proxy is used to cache HTTP data to improve access speed, intercepting client requests and answering from cache if the data has been requested before. It can function as a regular or transparent proxy with access lists, cache lists, and direct lists to filter requests. The document provides instructions for configuring an HTTP proxy on a MikroTik router to block specific websites and file types for caching and downloading.

Uploaded by

Andi Ruswendi
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 13

HTTP PROXY

Divisi Training
PT UFOAKSES SUKSES LUARBIASA
Jakarta
[email protected]

   
HTTP Proxy
• HTTP Proxy is used to speed up Internet HTTP 
service access speed by caching HTTP data to 
the storage drive or memory
• HTTP Proxy intercept client request, asks for 
same data itself and store an answer in cache
• Next time client request same data, HTTP proxy 
will intercept the request and answer to client 
from the cache
• HTTP proxy can be used as HTTP firewall filter
HTTP proxy
HTTP Proxy Features
• The MikroTik RouterOS implements the 
following proxy server features:
• Regular and Transparent HTTP proxy
• Access List (HTTP firewall filter)
• Cache List (specifies which requests to cache, 
and which not)
• Direct List (If parent­proxy property is specified, 
it is possible to tell proxy server whether to try to 
pass the request to the parent proxy or to 
resolve it connecting to the requested server 
directly.)
Transparent HTTP Proxy
Access List Rules
Destination Host and
Cache List Rule
HTTP Proxy Monitoring
Create your no open HTTP Proxy

• /ip firewall filter 
 chain=input in­interface=<Your WAN Port> 
src­address=0.0.0.0/0 protocol=tcp dst­
port=8080 action=drop 
Workshop
Block Websites & Stop Downloading Using 
Proxy  
• /ip proxy 
enabled: yes 
src­address: 0.0.0.0 
port: 8080 
parent­proxy: 0.0.0.0:0 
cache­drive: system 
cache­administrator: "webmaster" 
max­disk­cache­size: none 
max­ram­cache­size: none 
cache­only­on­disk: no 
maximal­client­connections: 1000 
maximal­server­connections: 1000 
max­object­size: 512KiB 
• Now, Make it Transparent 
• /ip firewall nat chain=dstnat protocol=tcp 
dst­port=80 action=redirect to­ports=8080
• Make sure that your proxy is NOT a Open 
Proxy 
• /ip firewall filter chain=input in­
interface=<Your WAN Port> src­
address=0.0.0.0/0 protocol=tcp dst­
port=8080 action=drop
  
• Now for Blocking Websites 
• /ip proxy access dst­host=www.sex.com 
action=deny 
• We can also stop downloading files like.mp3, 
.exe, .dat, .avi,…etc. 
• /ip proxy access 
path=*.exe action=deny 
path=*.mp3 action=deny 
path=*.zip action=deny 
path=*.rar action=deny. 
• /ip proxy access  dst­host=:mail action=deny
 

You might also like