Erro ao dar restart no squid3

Tchula
(usa Debian)

Enviado em 28/08/2018 - 12:00h

Bom dia..
Sou um novato em linux e estou tentando configurar um squid3, sóq eu na hora de dar o restart esta me dando erro e não consigo resolver, por favor algume pode me ajudar.

Segue o erro do restart
A unidade squid.service está sendo iniciada.
ago 28 11:43:22 Debian-srv squid[4115]: Starting Squid HTTP Proxy: squid2018/08/28 11:43:22| /etc/squid/squid.conf:1 unrecognized: 'GNU'
ago 28 11:43:22 Debian-srv squid[4115]: 2018/08/28 11:43:22| WARNING: (B) '::/0' is a subnetwork of (A) '::/0'
ago 28 11:43:22 Debian-srv squid[4115]: 2018/08/28 11:43:22| WARNING: because of this '::/0' is ignored to keep splay tree searching predictabl
ago 28 11:43:22 Debian-srv squid[4115]: 2018/08/28 11:43:22| WARNING: You should probably remove '::/0' from the ACL named 'all'
ago 28 11:43:22 Debian-srv squid[4115]: 2018/08/28 11:43:22| aclIpParseIpData: WARNING: Netmask masks away part of the specified IP in '192.168
ago 28 11:43:22 Debian-srv squid[4115]: 2018/08/28 11:43:22| Warning: empty ACL: acl bloqueados url_regex "/etc/squid/bloqueados"
ago 28 11:43:22 Debian-srv squid[4115]: 2018/08/28 11:43:22| Warning: empty ACL: acl permitidos url_regex "/etc/squid/permitidos"
ago 28 11:43:22 Debian-srv squid[4115]: 2018/08/28 11:43:22| ERROR: Can not open file SSL_ports for reading
ago 28 11:43:22 Debian-srv squid[4115]: failed!
ago 28 11:43:22 Debian-srv systemd[1]: squid.service: PID file /var/run/squid.pid not readable (yet?) after start: No such file or directory
ago 28 11:43:22 Debian-srv systemd[1]: Failed to start LSB: Squid HTTP Proxy version 3.x.

segue meu squid.conf
########Especifica o tipo de autenticação básica do proxy e o local de armazenagem########

auth_param basic program /usr/lib/squid/basic_ncsa_auth /etc/squid/squid_passwd

######Número de processos autenticados que devem ser iniciados juntos com o proxy##########

auth_param basic children 10

#########texto formulario de autenticação#################################################

auth_param basic realm Autentique-se para acessar a internet

########Periodo de validade da autenticação################################################

auth_param basic credentialsttl 4 hours

############Desativa CaseSensitive########################################################

auth_param basic casesensitive off

#####################################CONTROLE DE ACESSO###########################################

#########Bloquear acessos fora da rede#############################################

acl all src all

###############define a faixa da rede##############################################

acl redelocal src 192.168.0.0/24

###############Habilita uso do proxy###############################################

acl localhost src 192.168.0.250/24

###############Criar as portas que são utilizadas no protocolo https################

acl manager url_regex -i ^cache_object:// /squid-internal-mgr/

acl SSL_ports port 433 563

###########################PROTOCOLOS CONHECIDOS#####################################

acl Safe_ports port 80 # http

acl Safe_ports port 21 # ftp

acl Safe_ports port 443 563 # https, snews

acl Safe_ports port 70 # gopher

acl Safe_ports port 210 # wais

acl Safe_ports port 280 # http-mgmt

acl Safe_ports port 488 # gss-http

acl Safe_ports port 591 # filemaker

acl Safe_ports port 777 # multiling http

acl Safe_ports port 1025-65535 # portas altas

#########Especifica o tipo do método de requisição#####################################

acl CONNECT method CONNECT

acl autenticados proxy_auth REQUIRED

##########Arquivos com expressões bloqueadas###########################################

acl bloqueados url_regex "/etc/squid/bloqueados"

###########Arquivo com expressões permitidas###########################################

acl permitidos url_regex "/etc/squid/permitidos"

############zera uso da internet bloqueando conexões que não tenham conteudo ACL#######

http_access deny !Safe_ports

http_access deny CONNECT "SSL_ports"

###########Nega para protocolos não relacionados#######################################

http_access deny manager

http_access deny bloqueados

http_access allow permitidos

http_access allow autenticados

http_access allow localhost

#######Pcs dentro da rede local podem usar o proxy#####################################

http_access allow redelocal

########Nega acesso para quem não estiver dentro da rede local#########################

http_access deny all

#################################CONFIGURAÇÕES GERAIS#######################################

########Porta que o servidor proxy vai rodar################################################

http_port 3128

###########Visibilidade do servidor proxy##################################################

visible_hostname Debian-srv

########################################CACHE##############################################

cache_mem 64 mb

maximum_object_size_in_memory 64 kb

cache_swap_low 90

cache_swap_high 95

cache_dir ufs /var/spool/squid 2048 16 256

cache_access_log /var/log/squid/access.log

refresh_pattern ^ftp: 15 20% 2280

refresh_pattern ^gopher: 15 0% 2280

refresh_pattern . 15 20% 2280

####################################FIM DAS CONFIGURAÇÕES DO SQUID##################################

fpires
(usa Debian)

Enviado em 28/08/2018 - 17:17h

Remova as aspas na linha

http_access deny CONNECT "SSL_ports" 

Quando o squid encontra algo entre aspas, ele trata como um arquivo a ser aberto. Por isso o erro

 ago 28 11:43:22 Debian-srv squid[4115]: 2018/08/28 11:43:22| ERROR: Can not open file SSL_ports for reading" 

Tchula
(usa Debian)

Enviado em 29/08/2018 - 11:58h

Bom dia.
Obrigado pela atenção

Agora quando eu habilito esta linha nas configurações do squid tenho erro de permissão como mostro abaixo.

cache_dir ufs /etc/squid/cache 30000 16 256

FATAL: Failed to make swap directory /etc/squid/cache: (13) Permission denied

fpires
(usa Debian)

Enviado em 29/08/2018 - 15:07h

O diretório de cache (e seus subdiretórios precisam pertencer ao usuário do squid.