Squid (squid.conf)

Squid ACL

Categoria: Networking

Software: Squid

[ Hits: 7.175 ]

Por: Elton


Esse squid foi criado lendo alguns tutoriais e o Foca Linux, utilizo esse squid  para fazer o proxy transparente...e também para o bloqueio de palavras e liberação de alguns domínios....espero ter ajudado em algo :)


                            ####Squid.conf########

       http_port 192.168.0.254:3128
       visible_hostname "hostname da máquina"
        
        hierarchy_stoplist cgi-bin ?
        acl QUERY urlpath_regex cgi-bin \?
        no_cache deny QUERY
        cache_swap_low 90
        cache_swap_high 95
        maximum_object_size 4096 KB
        cache_mem 50 MB
        cache_dir ufs /var/spool/squid 100 16 256
        cache_access_log /var/log/squid/access.log
        refresh_pattern ^ftp:           1440    20%     10080
        refresh_pattern ^gopher:        1440    0%      1440
        refresh_pattern .               0       20%     4320
  
        acl all src 0.0.0.0/0.0.0.0
        acl manager proto cache_object
        acl localhost src 127.0.0.1/255.255.255.255
        acl rede src 192.168.0.0/24
      
        client_netmask 255.255.255.0

        acl SSL_ports port 443 563      # https, snews
        acl SSL_ports port 873          # rsync
        acl Safe_ports port 80          # http
        acl Safe_ports port 21          # ftp
        acl Safe_ports port 22          # ssh
        acl Safe_ports port 443 563     # https, snews
        acl Safe_ports port 70          # gopher
        acl Safe_ports port 210         # wais
        acl Safe_ports port 1025-65535  # unregistered ports
        acl Safe_ports port 280         # http-mgmt
        acl Safe_ports port 488         # gss-http
        acl Safe_ports port 591         # filemaker
        acl Safe_ports port 777         # multiling http
        acl Safe_ports port 631         # cups
        acl Safe_ports port 873         # rsync
        acl Safe_ports port 901         # SWAT

        acl purge method PURGE
        acl CONNECT method CONNECT
        acl sites url_regex -i "/etc/squid/sites.txt"
        acl pag_liberadas dstdomain .curitiba.org.br
        acl pag_liberadas dstdomain .curitiba.pr.gov.br

        http_access allow pag_liberadas
        http_access deny sites
        http_access allow all
        http_access allow manager localhost
        http_access deny manager
        http_access allow purge localhost
        http_access deny purge
        http_access deny !Safe_ports
        http_access deny CONNECT !SSL_ports
        http_access allow localhost
        http_access allow rede
        icp_access allow all

        httpd_accel_port 80
        httpd_accel_host virtual
        httpd_accel_with_proxy on
        httpd_accel_uses_host_header on
  


Comentários

Nenhum comentário foi encontrado.


Contribuir com comentário

  



Patrocínio

Site hospedado pelo provedor RedeHost.
Linux banner

Destaques

Artigos

Dicas

Tópicos

Top 10 do mês

Scripts