Let's try to understand the message flow between Squid and the redirector (or rewriter) programs.

Let's see a very simple Perl script that can act as a URL redirector program.

$|=1;
while (<>) {
s@http://www.example.com@303:http://www.example.net@;
print;
}

The previous code is a URL redirector program in its simplest form. It redirects all URLs containing the URL www.example.com to www.example.net without inspecting values of any of the fields by Squid.

Based on the concepts we learned earlier about the URL redirector helper programs, we can write a program that can redirect/rewrite URLs conditionally. So, let's have a look at an example:

Now, let's have a look at an example URL redirector program in Python, which can be extended to fit any scenario:

#!/usr/bin/env python

import sys

def redirect_url(line, concurrent):
  list = line.split(' ')
  # 1st or 2nd element of the list 
  # is the URL depending on concurrency
  if concurrent:
    old_url = list[1]
  else:
    old_url = list[0]

  # Do remember that the new_url 
  # should contain a '\n' at the end.
  new_url = '\n'
  # Take the decision and modify the url if needed
  if old_url.endswith('.avi'):
    # Rewrite example
    new_url = 'http://example.com/' + new_url
  elif old_url.endswith('.exe'):
    # Redirect example
    new_url = '302:http://google.co.in/' + new_url
  return new_url

def main(concurrent = True):
  # the format of the line read from stdin with concurrency is
  # ID URL ip-address/fqdn ident method myip=ip myport=port
  # and with concurrency disabled is
  # URL ip-address/fqdn ident...

Once we have finished writing the redirector program, we need to configure Squid to use it properly. There are a few directives in the Squid configuration file using which we can control how Squid will use our URL redirector program. Let's have a quick look at these directives.

url_rewrite_program /opt/squid/libexec/custom_rewriter

url_rewrite_program /usr/bin/python /opt/squid/libexec/my_rewriter.py

url_rewrite_program /usr/bin/python /opt/squid/libexec/another_rewriter.py --concurrent

The deny_info option is a directive in the Squid configuration file, which can be used to:

Let's have a look at the three syntaxes of the deny_info directive:

deny_info CUSTOM_ERROR_PAGE ACL_NAME
deny_info ALTERNATE_URL ACL_NAME
deny_info TCP_RESET ACL_NAME

The syntaxes shown previously correspond to the uses we have just discussed. In the first syntax, the parameter CUSTOM_ERROR_PAGE specifies a custom error page written in HTML or plain text, which will be displayed instead of Squid's default access denied page. The error page written in English should be placed in the ${prefix}/share/errors/en-us/ directory or another appropriate location for other languages. We can also place this errors file in a custom location such as /etc/squid/local-errors...

So far, we have learned about how URL redirector programs communicate with Squid and how we can write our own URL redirector programs. Now, let's have a look at a few popular URL redirectors. For a full list of available redirector programs, please visit http://www.squid-cache.org/Misc/related-software.html.

In this chapter, we have learned about URL redirector and rewriter programs, which are very helpful in extending the basic Squid functionality. We have also learned about the deny_info directive which is a better fit for redirecting users to better and more understandable error pages. We also learned how Squid communicates with URL helpers.

Specifically, we covered:

Now that we have learned about most of the components of Squid, we need to learn about troubleshooting in case a component doesn't behave appropriately, and that is the topic of our next chapter.