Re: [squid-users] Squid only record ext ips...

From: Daniel Zilli <daniel@dont-contact.us>
Date: Tue, 28 Aug 2007 07:56:38 -0300

Hi...

Thanks for all the help here. Last question. Does somebody have a last tip tor
 improve this setup ?

Thanks Daniel

> >
> > ======
> > http_port 3128 transparent
> > icp_port 0
> > hierarchy_stoplist cgi-bin ?
> > acl QUERY urlpath_regex cgi-bin \?
> > cache deny QUERY
> > cache_mem 8 MB
> > cache_swap_low 90
> > cache_swap_high 95
> > maximum_object_size 4096 KB
> > minimum_object_size 0 KB
> > maximum_object_size_in_memory 8 KB
> > cache_dir ufs /var/cache/squid 50 16 256
> > access_log /var/log/squid/access.log
> > cache_log /var/log/squid/cache.log
> > cache_store_log none
> > pid_filename /var/run/squid.pid
> > check_hostnames off
> > acl all src 0.0.0.0/0.0.0.0
> > acl manager proto cache_object
> > acl localhost src 127.0.0.1/255.255.255.255
> > acl to_localhost dst 127.0.0.0/8
> > acl SSL_ports port 443
> > acl Safe_ports port 80 # http
> > acl Safe_ports port 21 # ftp
> > acl Safe_ports port 443 # https
> > acl Safe_ports port 70 # gopher
> > acl Safe_ports port 210 # wais
> > acl Safe_ports port 1025-65535 # unregistered ports
> > acl Safe_ports port 280 # http-mgmt
> > acl Safe_ports port 488 # gss-http
> > acl Safe_ports port 591 # filemaker
> > acl Safe_ports port 777 # multiling http
> > acl CONNECT method CONNECT
> > http_access allow manager localhost
> > http_access deny manager
> > http_access deny !Safe_ports
> > http_access deny CONNECT !SSL_ports
> > http_access deny to_localhost
> > acl FREE_IP src "/etc/squid/regras/freeip.txt"
> > http_access allow FREE_IP
> > acl bloqueados dstdomain "/etc/squid/regras/lista.txt"
> > http_access deny bloqueados
> > acl DOWN_EXT url_regex -i .com$ .pif$ .avi$ .mp3$ .mpeg$ .mpg$ .rm$ .wma$
> > .asx$ .cab$ .src$
> > http_access deny DOWN_EXT
> > acl MSNME url_regex -i gateway.dll
> > acl MSN req_mime_type -i ^application/x-msn-messenger$
> > http_access deny MSNME
> > http_access deny MSN
> > acl redelocal src 10.0.0.0/255.0.0.0
> > http_access allow redelocal
> > http_access deny all
> > cache_effective_user nobody
> > dns_testnames terra.com.br kernel.org
> > logfile_rotate 5
> > error_directory /usr/share/squid/errors/Portuguese
> > maximum_single_addr_tries 1
> >
> > ======
Received on Tue Aug 28 2007 - 04:58:41 MDT

This archive was generated by hypermail pre-2.1.9 : Sat Sep 01 2007 - 12:00:03 MDT