{"id":1573,"date":"2012-10-10T11:35:57","date_gmt":"2012-10-10T03:35:57","guid":{"rendered":"http:\/\/rmohan.com\/?p=1573"},"modified":"2012-10-10T12:25:33","modified_gmt":"2012-10-10T04:25:33","slug":"squid-tips","status":"publish","type":"post","link":"https:\/\/mohan.sg\/?p=1573","title":{"rendered":"SQUID TIPS"},"content":{"rendered":"

How to install squid proxy on centos 6<\/strong><\/p>\n

Squid is a proxy server for caching and filtering web content . Squid proxy is used by various organisation and internet providers to reduce bandwidth and to increase response time .<\/p>\n

Squid proxy service will cache the requested web-content and re-using it for the further request of the same content.<\/p>\n

Steps to install and configure a perfect squid proxy server in Linux. This configuration Should work on all rpm based distributions(Redhat,CentOS,Fedora,etc.)
Linux Proxy server<\/p>\n

Step1: Install squid packages first
[root@server ~#]yum install squid<\/p>\n

Step2: Edit the squid\u2019s configuration file \u201csquid.conf\u201d located in \/etc\/squid\/
[root@server ~#]vi \/etc\/squid\/squid.conf<\/p>\n

#In 18th line add your proxy client network(if 192.168.10.1 to 255) and a name for network (here netusers is acl name)
acl your_network src 192.168.10.0\/24<\/p>\n

#In the 51st line, allow internet access to above specified network range
http_access allow your_network<\/p>\n

# in the 64th line (remove # if present), and change port number if required
http_port 3128<\/p>\n

#Add the below 3 lines to the bottom of file
request_header_access X-Forwarded-For deny all
request_header_access Via deny all
request_header_access Cache-Control deny all<\/p>\n

#Add the below line to bottom\u00a0 add (hide IP address)
forwarded_for off<\/p>\n

#Add below line to bottom(add your visible hostname)
visible_hostname vjetnamnet<\/p>\n

#(now save the squid.conf file)<\/p>\n

Step3: start squid daemon
[root@server ~#]service squid start<\/p>\n

Then verify the port 3128 is open
# netstat -tulpn | grep 3128<\/p>\n

Configure firewall:
# iptables -A INPUT -i $INTERNET -m state –state ESTABLISHED,RELATED -j ACCEPT
\u00a0
# iptables -t nat -A PREROUTING -i $INTERNET -p tcp –dport 80 -j REDIRECT –to-port $SQUID_PORT<\/p>\n

Step4: In the allowed clients(192.168.10.1 to 192.168.10.255) Configure web browser\u2019s proxy settings to use the proxy server for internet access.<\/p>\n

Configuring Squid as Transparent Proxy<\/p>\n

squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-requested web pages. Squid has extensive access controls and makes a great server accelerator.<\/p>\n

An intercepting proxy (also known as a \u201ctransparent proxy\u201c) combines a proxy server with a gateway. Connections made by client browsers through the gateway are redirected through the proxy without client-side configuration (or often knowledge). So the client never realize and don\u2019t have to configure the client machine to use the proxy, but they are using it.<\/p>\n

You can configure squid as transparent proxy.
[root@server ~]# vi \/etc\/squid\/squid.conf<\/p>\n

Squid normally listens to port 3128
http_port 3128<\/p>\n

and replace with
http_port 3128 intercept<\/p>\n

The most important line is:<\/p>\n

\u201chttp_port 3128 intercept\u201d : This line means, Squid proxy run as transparent proxy at port 3128. Later you need to edit the iptables to bypass every request\/response connection through this port.
Note: That setting is for Squid v3.1. For other version like Squid v2.6 or v2.7, \u201cintercept\u201d option is being deprecated, you need to use option \u201ctransparent\u201d instead.<\/p>\n

Redirect the all HTTP traffic.<\/p>\n

If you would like to redirect the all HTTP traffic through the proxy without needing to set up a proxy manually in all your applications you will need to add some rules
[root@server ~]# iptables -t nat -A PREROUTING -i $LAN_IN -p tcp –dport 80 -j DNAT –to $SQUID_SERVER:$SQUID_PORT
\u00a0
[root@server ~]# iptables -t nat -A PREROUTING -i $INTERNET -p tcp –dport 80 -j REDIRECT –to-port $SQUID_PORT<\/p>\n

Example:
[root@server ~]# iptables -t nat -A PREROUTING -i eth1 -p tcp -m tcp –dport 80 -j DNAT –to-destination 192.168.10.1:3128
\u00a0
[root@server ~]# iptables -t nat -A PREROUTING -i eth0 -p tcp -m tcp –dport 80 -j REDIRECT –to-ports 3128<\/p>\n

Where eth1,eth0 are the LAN (eth1), WAN (eth0) devices and 192.168.10.1 (squid server IP)\u00a0 is the IP address of your LAN device.<\/p>\n

If you wish to monitor the performance of your proxy you can look as some log parser\u2019s (sarg, calamaris, ect.)<\/p>\n

How to change Squid server default listening port<\/p>\n

Every network services has a particular port numbers. Same way the Squid proxy server will listen on port 3128\/TCP by default. But you can change the listening port by editing the squid.conf file. And you should open the same port in squid servers firewall and in ip packet forwarding devices if required. Below is the way to change Squid listen port number.
Change Squid port number
[root@server ~]# vi \/etc\/squid\/squid.conf<\/p>\n

Go to 64th line if you are using squid version 3.0 or above.
Here changed the port from 3128 to 8080 (see below)
Squid normally listens to port 3128
http_port 8080<\/p>\n

Now save the squid.conf file and restart squid server
Squid server listen on multiple ports
Squid server can listen on multiple ports at same time, use the below configuration
http_port 8080 9090
Now squid will listen on both 8080 and 9090 ports as well.
Restart Squid server to apply new configurations
[root@server ~]# service squid restart
Stopping squid: …………….\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 [\u00a0 OK\u00a0 ]
\u00a0
Starting squid: .\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 [\u00a0 OK\u00a0 ]<\/p>\n

 <\/p>\n

How to open a port in squid server<\/p>\n

y default the following TCP port numbers are opened in squid proxy server.
acl Safe_ports port 80\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # http
acl Safe_ports port 21\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # ftp
acl Safe_ports port 443\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # https
acl Safe_ports port 70\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # gopher
acl Safe_ports port 210\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # wais
acl Safe_ports port 1025-65535\u00a0 # unregistered ports
acl Safe_ports port 280\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # http-mgmt
acl Safe_ports port 488\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # gss-http
acl Safe_ports port 591\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # filemaker
acl Safe_ports port 777\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # multiling http
If a web server listening on custom port 81\/TCP, squid server will not allow to browse to\u00a0 that server due to the port 81\/TCP is not listed as Safe_ports.
Follow the steps to enable a port in squid server
[root@server ~]# vi \/etc\/squid\/squid.conf
acl Safe_ports port 81\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # Add this line with the default port acls
\u00a0
http_access allow Safe_ports\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # allow access
Add the above two lines to squid,conf
Restart or reload squid server with changes
[root@server ~]# service squid reload
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 or
[root@server ~]# service squid restart<\/p>\n

How to enable time based access restrictions in squid proxy server<\/p>\n

Sometimes you may need to enable a time based access restrictions in your squid server. Squid proxy can do this with \u201ctime\u201d access list(ACL). All you need to create a \u201ctime\u201d ACL with required time and dates from the week and apply with access restriction ACLs.<\/p>\n

Creating time ACL
[root@server ~]# vi \/etc\/squid\/squid.conf<\/p>\n

Configure the time based restrictions like below
acl danny src 192.168.10.66\/32
acl officehours time MTWHFA 8:00-17:00
http_access allow danny officehours
Now save the squid.conf file
Where\u2026..
MTWHFA is the days Monday to Saturday in a week
8:00-17:00 is restrict access in between 8:00 to 17:00 (24hr format)
Reload\/restart the squid service
[root@server ~]# service squid reload
Now the user james with ip address 192.168.10.66 cannot access the internet from 8:00 to 17:00 Monday to Saturday.
You can use the time ACL with any other ACLs to restrict access within the time range.<\/p>\n

How to enable ftp access through squid proxy server<\/p>\n

Squid work as a http proxy with default configurations and will not process ftp requests from clients. You can configure squid as ftp proxy by editing the \u201csquid.conf\u201d configuration file in \u201c\/etc\/squid\/\u201d directory.
Follow the steps below..
[root@server ~#]vi \/etc\/squid\/squid.conf
acl SSL_ports port 443 21\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #(Edit add the ftp port 21 to SSL port acl)
acl Safe_ports port 21\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # ftp
acl ftp proto FTP\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #(Create a new acl for ftp protocol)
\u00a0
http_access allow ftp\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #(Allow browsing above created ftp acl)<\/p>\n

Save the squid.conf file<\/p>\n

Reload squid service with changes
[root@server ~#]service squid reload<\/p>\n

Use Internet explorer or firefox for ftp upload and download<\/p>\n

To access a ftp server use this way\u00a0\u00a0\u00a0\u00a0 ftp:\/\/username:password@ipaddress:port\u00a0\u00a0\u00a0\u00a0 (press enter)<\/p>\n

Block https sites in squid proxy<\/p>\n

here the post will show you how to block complete \u201chttp\u201d and \u201chttps\u201d facebook access in office times in your squid proxy server.<\/p>\n

eg: block\u00a0 https:\/\/www.facebook.com, https:\/\/twitter.com, and https:\/\/www.blogger.com. Create an acl with facebook domain (dstdomain) and deny both http and https access.<\/p>\n

Step1: Create a new acl with facebook.com twitter.com and blogger.com (Dont forget to add a dot (\u201c.\u201d) before facebook.com)<\/p>\n

Add the Configurations to squid.conf
[root@server ~#]vi \/etc\/squid\/squid.conf<\/p>\n

Create an acl for facebook domain\u00a0 (any required sites)
acl badsites dstdomain .facebook.com .twitter.com .blogger.com<\/p>\n

Step2: Deny the above domain to connect via ssl connection (https)
http_access deny CONNECT badsites<\/p>\n

(save the squid.conf configuration file)
And finaly reload squid service to take effect changes
[root@server ~#]service squid reload<\/p>\n

Tips: The way to include multiple sites in one ACL<\/p>\n

How to block flash ads in squid proxy server<\/p>\n

Configure your Squid proxy server to block flash ads (advertisements) in websites. So squid server filter flash ads contents.
Steps to block all flash ads in squid proxy server.
Edit squid configuration file and add the below configurations to squid.conf file.
[root@server ~]# vi \/etc\/squid\/squid.conf
1: Create an acl for ads content type<\/p>\n

acl flash_ads rep_mime_type application\/x-shockwave-flash<\/p>\n

#2: Deny flash ads by denying the above acl (against any ipaddress acl)
http_reply_access deny flash_ads<\/p>\n

Now Save the squid.conf file<\/p>\n

3: Reload squid service to take effect changes
[root@server ~]# service squid reload<\/p>\n

Important: Sometimes clearing the client browser\u2019s cache\/cookie is required.)<\/p>\n

Block Downloading File Types Like mp3, exe, zip, etc In Squid<\/p>\n

Squid server can block\/deny downloading particular file types like pictures, musics, videos, executable files etc. This file content filtering in squid is based on the file extension types like .exe, .mp3, .avi, .jpeg, .torrent, .zip etc.<\/p>\n

Blocking file types in squid. First of all, create an ACL file includes all the file types to block downloading them.
[root@server ~]# vi \/etc\/squid\/bad_files.acl<\/p>\n

\\.[Ee][Xx][Ee]$\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #Block downloading exe executable files
\\.[Mm][Pp]3$\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #Block mp3 music files
\\.[Zz][Ii][Pp]$\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #Block ZIP archive files
\\.[Jj][Pp][Ee][Gg]$\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #Block jpeg picture files
\\.[Aa][Vv][Ii]$\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #Block avi video files
\\.[Tt][Oo][Rr][Rr][Ee][Nn][Tt]$\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #Block torrent files
(Add the above required file extensions types and save the file)<\/p>\n

Then, edit the squid configuration file and add an ACL for above created acl file.
[root@server ~]# vi \/etc\/squid\/squid.conf
acl lan src 192.168.10.0\/24\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 (specify address range to deny downloading files)
acl badfiles urlpath_regex “\/etc\/squid\/bad_files.acl”\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 (ACL for blocked file types)
http_access deny badfiles lan\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 (Deny the file types to lan)<\/p>\n

(Add the above three lines and save the squid.conf file)<\/p>\n

Restart or reload squid server
[root@server ~]# service squid reload<\/p>\n

Verify the file type filtering\/blocking by downloading any files from the Internet<\/p>\n

How to block utorrent application and torrent large file downloading in squid<\/p>\n

Utorrent application uses all the unregistered posts 1025-65535 with random selection method. So blocking all those port numbers will block the bulk file downloading with utorrent application.<\/p>\n

Edit the Squid.conf configuration file
[root@server ~]# vi \/etc\/squid\/squid.conf<\/p>\n

By default all the port numbers from 1025-65535 are configured as \u201cSafe_ports\u201d and allowed for browsing.
So disable that ACL by adding a \u201c#\u201d infront of the line (see below)
#acl Safe_ports port 1025-65535\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # unregistered ports<\/p>\n

And create a new ACL for the same port range just below the above line (with different acl name, like below)
acl Denied_ports port 1025-65535<\/p>\n

And deny browsing to the websites with denied port numbers (both normal and secure)
http_access deny Denied_ports
http_access deny CONNECT Denied_ports<\/p>\n

# now save the squid.conf file<\/p>\n

Reload Squid server with new configuration.
[root@server ~]# service squid reload<\/p>\n

Verify Denying
Verify denying with squid access.log file
[root@server ~]# vi \/var\/log\/squid\/access.log<\/p>\n

How to block a Web Browser in Squid proxy<\/p>\n

Blocking\u00a0 some web browsers is possible in squid proxy server. Squid can block all the requests from web browsers like Internet explorer, Chrome, Firefox, etc.<\/p>\n

Create an \u201cacl\u201d with the bad web browser types and finaly deny the access. Add all the below configurations to the Squid server configuration file \u201c\/etc\/squid\/squid.conf\u201d.
[root@server ~#]vim \/etc\/squid\/squid.conf<\/p>\n

#Block Chrome in squid proxy
acl bad_browser browser Chrome<\/p>\n

#Deny the requests from chrome
http_access deny bad_browser all
#Block Mozilla Firefox in squid proxy
acl bad_browser browser Firefox<\/p>\n

#Deny the requests from firefox
http_access deny bad_browser all
#Block Opera in squid proxy
acl bad_browser browser Opera<\/p>\n

#Deny the requests from chrome
http_access deny bad_browser all<\/p>\n

#Block Internet Explorer in squid proxy
acl bad_browser browser IE
#Deny the requests from Internet explorer
http_access deny bad_browser all<\/p>\n","protected":false},"excerpt":{"rendered":"

How to install squid proxy on centos 6<\/p>\n

Squid is a proxy server for caching and filtering web content . Squid proxy is used by various organisation and internet providers to reduce bandwidth and to increase response time .<\/p>\n

Squid proxy service will cache the requested web-content and re-using it for the further request of […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[37],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/1573"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1573"}],"version-history":[{"count":6,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/1573\/revisions"}],"predecessor-version":[{"id":1576,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/1573\/revisions\/1576"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1573"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1573"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1573"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}