liviomm
(usa Debian)
Enviado em 19/02/2010 - 15:59h
Estou fazendo esta nova config do squid gostaria de saber se esta tudo ok ou se tem algum erro ?
Obrigado galera
----CONFIG DO SQUID ABAIXO-----
#INICIO SQUID.CONFIG
http_port 3128 transparent
visible_hostname linpus.proxy
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_dir ufs /var/cache/squid 200 16 256
# CONFIG PROXY TRANSPARENTE
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header
# Endereço de rede e sua mascara
acl all src 192.168.151.0/24
always_direct allow all
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 # https
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, news
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl purge method PURGE
acl CONNECT method CONNECT
# LISTA DE REGRAS
acl acesso_total src "/etc/squid/regras ip_acesso_total"
acl acesso_restrito src "/etc/squid/regras ip_acesso_restrito"
acl liberado url_regex -i "/etc/squid/regras conteudo_liberado"
acl download url_regex -i "/etc/squid/regras download"
acl bloqueado url_regex -i "/etc/squid/regras conteudo_bloqueado"
acl update url_regex "/etc/squid/regras update"
acl msn url_regex -i "/etc/squid/regras msn"
acl msn_libera src "192.168.151.X" "192.168.151.X" "192.168.151.X"
# HABILITANDO AS REGRAS
http_access allow acesso_total
http_access allow liberado
http_access allow UPDATE
http_access allow aceso_restrito
# BLOQUEANDO REGRAS
http_access deny download
http_access deny bloqueado
http_access deny all
http_access deny msn
http_access deny msn !msn_libera
#LIBERANDO REDE INTERNA
#http_access allow all
#icp_access allow all
# LOG DE ACESSO - PARA VISUALIZAR COMANDANDO -> tail -f /var/log/squid/acess.log
access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
store_log /var/log/squid/store.log
# LOCALIZACAO AONDE ESTA AS MSG DE ERRO
error_directory /usr/share/squid/errors/pt-br
#EXIBIÇÃO PAGINAS DE BLOQUEIO
deny_info ERR_ACCESS_DENIED.html conteudo_bloqueado
deny_info generic.html download