Buckminster
(usa Debian)
Enviado em 04/09/2013 - 08:29h
fabianopmth escreveu:
segue abaixo amigo
######## Porta de proxy #########
http_port 10.1.1.3:3128
######## Host visível ##########
visible_hostname server1
##### Log de acesso à páginas ######
access_log /var/log/squid/access.log
httpd_suppress_version_string on
## Páginas de bloqueios exibidos em Português
error_directory /usr/share/squid/errors/pt-br
cache_effective_user proxy
cache_effective_group proxy
## Tamanho máximo do arquivo no cache em RAM e disco, respectivamente
maximum_object_size_in_memory 64 KB
maximum_object_size 5000 MB
minimum_object_size 0 KB
## Porcentagem de uso do cache de disco mínimo e máximo,respectivamente
cache_swap_low 90
cache_swap_high 95
## Log de uso do cache em disco
cache_access_log /var/log/squid/cache.log
## Espaço de 5GB em disco para o cache de páginas
cache_dir ufs /var/spool/squid 5200 128 256
###### Regra que ir-a bloquer todos os sites que estaja na lista ####
acl sites_proibidos url_regex -i "/etc/squid/sites_proibidos/bloqueados"
http_access deny sites_proibidos
### Tamanho de armazenamento de cahe ####
cache_mem 512 MB
############################################################################
################# Especificação de portas seguras ##########################
############################################################################
acl manager proto cache_object
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 11194 # vpn
acl Safe_ports port 8069 # aplicacao h2a
acl Safe_ports port 1521 # oracle
acl Safe_ports port 21 # ftp
acl Safe_ports port 22 # ssh
acl Safe_ports port 243 563 443 2200 4343 8008 8009 10001 10002 1723 47 # https, snews
<< AQUI PROCURE NÃO COLOCAR MAIS DO QUE 5 PORTAS EM CADA ACL SAFE_PORTS, CRIE UMA NOVA.
acl Safe_ports port 70 # goper
acl Safe_ports port 210 # wais
acl Safe_ports port 1025 65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # swat
acl purge method PURGE
acl CONNECT method CONNECT
######## Rede interna ########
acl all src 0.0.0.0/0.0.0.0
<< AQUI PODE COMENTAR, O SQUID 3 CRIA SOZINHO POR PADRÃO ESSA ACL OU ENTÃO COLOCA 'ALL', FICANDO ASSIM: acl all src all
acl rede_local src0 10.1.1.1/24
<< AQUI TIRE O '0' DEPOIS DE SRC;
acl localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
http_access allow localhost
http_access allow rede_local
http_access deny all
79,1 Fim
e olha o erro que continua, parece simples.. mas ja me ganhou de 100 a 0
root@server1 squid]# service squid restart
Parando o squid: [FALHOU]
Iniciando o squid: [FALHOU]
2013/09/02 09:49:31| Processing Configuration File: /etc/squid/squid.conf (depth 0)
2013/09/02 09:49:31| ERROR: '0.0.0.0/0.0.0.0' needs to be replaced by the term 'all'.
2013/09/02 09:49:31| SECURITY NOTICE: Overriding config setting. Using 'all' instead.
2013/09/02 09:49:31| WARNING: (B) '::/0' is a subnetwork of (A) '::/0'
2013/09/02 09:49:31| WARNING: because of this '::/0' is ignored to keep splay tree searching predictable
2013/09/02 09:49:31| WARNING: You should probably remove '::/0' from the ACL named 'all'
2013/09/02 09:49:31| aclParseAclLine: Invalid ACL type 'src0'
FATAL: Bungled squid.conf line 75: acl rede_local src0 10.1.1.1/24
Squid Cache (Version 3.1.10): Terminated abnormally.
CPU Usage: 0.004 seconds = 0.003 user + 0.001 sys
Maximum Resident Size: 22528 KB
Page faults with physical i/o: 0
Execute squid -v e poste aqui o resultado desse comando.