tiagopaulista
(usa Debian)
Enviado em 11/02/2011 - 08:25h
Vala pessoal da VOL, estou precisando de uma ajuda com o Squid+Samba, segue abaixo meu arquivo Squid.
Preciso saber o que fazer quando o usuario tirar do navegador o Proxy, a internet não deve funcionar, so vai funcionar a internet se colocar o proxy e autenticar (isso esta funcionando):
#http_port 127.0.0.1:3128 transparent
http_port 3128
icp_port 0
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 15 MB
maximum_object_size 81920 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 1024 KB
cache_replacement_policy lru
memory_replacement_policy lru
shutdown_lifetime 3 seconds
cache_dir aufs /var/spool/squid 100 16 256
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log none
log_mime_hdrs off
#access_log /var/log/squid/access.log proxy
ftp_telnet_protocol on
#auth_param basic program /usr/lib/squid/smb_auth -W ITERFACE
auth_param basic program /usr/lib/squid/pam_auth
auth_param basic children 40
auth_param basic realm Acesso Restrito
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
read_timeout 2 days
half_closed_clients off
pconn_timeout 360 seconds
shutdown_lifetime 0 seconds
#acl Autentica_Samba proxy_auth REQUIRED
acl USUARIOS proxy_auth REQUIRED
acl USUARIOS_NAO_ORKUT proxy_auth "/etc/squid/rules/users-orkut.rules"
acl USUARIOS_NAO_YOUTUBE proxy_auth "/etc/squid/rules/users-youtube.rules"
acl USUARIOS_NAO_TWITTER proxy_auth "/etc/squid/rules/users-twitter.rules"
acl USUARIOS_NAO_GMAIL proxy_auth "/etc/squid/rules/users-gmail.rules"
acl USUARIOS_NAO_PROMOTE proxy_auth "/etc/squid/rules/users-promote.rules"
acl USUARIOS_NAO_EVOSERVER proxy_auth "/etc/squid/rules/users-evoserver.rules"
acl USUARIOS_NAO_MEEBO proxy_auth "/etc/squid/rules/users-meebo.rules"
#acl USUARIOS_NAO_TERRA proxy_auth "/etc/squid/rules/users-terra.rules"
acl ORKUT url_regex orkut
acl GMAIL url_regex gmail
acl PROMOTE url_regex promote
acl EVOSERVER url_regex evoserver
acl YOUTUBE url_regex youtube
acl TWITTER url_regex twitter
acl MEEBO url_regex meebo
#acl TERRA url_regex terra.com.br
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
http_access deny USUARIOS_NAO_ORKUT ORKUT
http_access deny USUARIOS_NAO_YOUTUBE YOUTUBE
http_access deny USUARIOS_NAO_GMAIL GMAIL
http_access deny USUARIOS_NAO_PROMOTE PROMOTE
http_access deny USUARIOS_NAO_EVOSERVER EVOSERVER
http_access deny USUARIOS_NAO_TWITTER TWITTER
http_access deny USUARIOS_NAO_MEEBO MEEBO
#http_access deny USUARIOS_NAO_TERRA TERRA
http_access allow USUARIOS
http_access allow SSL_ports
http_access allow Safe_ports
http_access allow localhost
http_access deny to_localhost
http_access deny all
http_reply_access allow all
icp_access deny all
acl limite src 192.168.0.0/192.168.0.255
reply_body_max_size 0 deny limite
request_body_max_size 0 KB
cache_mgr root
visible_hostname Interface
memory_pools off
forwarded_for unknown
coredump_dir /var/spool/squid
detect_broken_pconn on
pipeline_prefetch on
error_directory /usr/share/squid-langpack/pt-br/
Att,