hi ,
here is it :
[root_at_squid ~]# cat /etc/squid/squid.conf
#########################
#####################
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
acl localnet src fc00::/7 # RFC 4193 local private network range
acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged)
machines
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
#
# Recommended minimum Access Permission configuration:
#
# Deny requests to certain unsafe ports
http_access deny !Safe_ports
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
######################################################################################
######################################################################################
######################################################################################
# 3 workers, using worker #1 as the frontend is important
workers 3
if ${process_number} = 1
include /etc/squid/frontend.conf
else
include /etc/squid/backend.conf
endif
http_access deny all
##############################
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
####################################################
[root_at_squid ~]# cat /etc/squid/backend.conf
# each backend must listen on a unique port
# without this the CARP algorithm would be useless
http_port 127.0.0.1:400${process_number}
# a 10 GB cache of small (up to 32KB) objects accessible by any backend
worker
cache_dir rock /rock2 2000 max-size=32768
# NP: for now AUFS does not support SMP but the CARP algorithm helps reduce
object duplications
# a 10 GB cache of large ( over 32KB) objects per-worker
#cache_dir aufs /mnt/cache${process_number} 10240 128 128 min-size=32769
# the default maximum cached object size is a bit small
# you want the backend to be able to cache some fairly large objects
maximum_object_size 512 MB
# you want the backend to have a small cache_mem
cache_mem 4 MB
# the backends require a different name to frontends, but can share one
# this prevents forwarding loops between backends while allowing
# frontend to forward via the backend
visible_hostname backend.example.com
# change /var/log/squid to your own log directory
access_log /var/log/squid/backend.access.log
cache_log /var/log/squid/backend.cache.log
# add just enough access permissions to allow the frontend
http_access allow localhost
============================================================
[root_at_squid ~]# cat /etc/squid/frontend.conf
http_port x.x.67.252:xx000
acl mysubnet src xxxxxxxxx
http_access allow mysubnet
# add user authentication and similar options here
http_access allow manager localhost
http_access deny manager
# add backends - one line for each additional worker you configured
# NOTE how the port number matches the kid number
#cache_peer localhost parent 4002 0 carp login=PASS name=backend-kid2
#cache_peer localhost parent 4003 0 carp login=PASS name=backend-kid3
#you want the frontend to have a significant cache_mem
cache_mem 512 MB
# change /tmp to your own log directory, e.g. /var/log/squid
access_log /var/log/squid/frontend.access.log
cache_log /var/log/squid/frontend.cache.log
# the frontend requires a different name to the backend(s)
visible_hostname frontend.example.com
=====================================================
*i just wan to to know , why squid exit normally at each time ????*
regards
-----
Dr.x
-- View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/kid2-WARNING-disk-cache-maximum-object-size-is-unlimited-but-mem-cache-maximum-object-size-is-32-00-B-tp4662892p4662901.html Sent from the Squid - Users mailing list archive at Nabble.com.Received on Sat Oct 26 2013 - 08:12:18 MDT
This archive was generated by hypermail 2.2.0 : Sun Oct 27 2013 - 12:00:06 MDT