ehs171
(usa Ubuntu)
Enviado em 22/02/2010 - 08:28h
Bom dia amigo tentei fazer o que voce falou, mas ainda continou dando a mesma mensagem..
aqui esta meu squid.conf
http_port 3128 transparent
dns_nameservers 200.175.5.139
acl todos src 0.0.0.0/0.0.0.0
cache allow todos
##---------------------------------------------------------------------------------------------
# inicio testes cahce
# Configuracoes de cache, dono, logs, errors
# Define o usuario dono do cache do squid
cache_effective_user squid
cache_effective_group squid
# define a quantidade de memoria destinada ao cache
cache_mem 512 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size_in_memory 1024 KB
maximum_object_size 1000 MB
minimum_object_size 0 KB
# Se o HD for Sata ou SCSI utilizar UFS
#cache_dir ufs /home/squid/cache 10000 32 256
cache_dir diskd /home/squid/cache 10000 32 256 Q1=64 Q2=72
##teste
#cache_dir aufs /home/squid/cache 10000 32 256
##otimisacoes novas
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA
## off para o squid fechar conexoes
half_closed_clients off
##fim otimizacoes novas
# Atualização do cache
#hierarchy_stoplist cgi-bin ?
# ----- Desabilitar o Cache para determinadas paginas
# ---- acl QUERY urlpath_regex cgi-bin \?
acl no_cache url_regex "/home/squid/no_cache"
no_cache deny no_cache
# ------ Fim Desabilita cache
auth_param basic children 5
auth_param basic realm PMJ-BA Proxy
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
##################### Cache Videos ####################
refresh_pattern -i .flv$ 10080 90% 999999 ignore-no-cache override-expire ignore-private
acl youtube dstdomain .youtube.com
cache allow youtube
##################### Fim Cache Videos ################
##################### Cache do Windows Update #########
refresh_pattern au.download.windowsupdate.com/.*.(cab|exe|msi) 10080 100% 43200 reload-into-ims
refresh_pattern download.microsoft.com/.*.(cab|exe|msi) 10080 100% 43200 reload-into-ims
refresh_pattern msgruser.dlservice.microsoft.com/.*.(cab|exe|msi) 10080 100% 43200 reload-into-ims
refresh_pattern windowsupdate.com/.*.(cab|exe|msi) 10080 100% 43200 reload-into-ims
refresh_pattern
www.microsoft.com/.*.(cab|exe|msi) 10080 100% 43200 reload-into-ims
##################### Fim Cache do Windows Update ################
# fim testes Cache
##-----------------------------------------------------------------------------
# Log de Acesso
# Mostra quem acessou o que, dia e hora
cache_access_log /home/squid/logs/access.log
# access_log /home/squid/logs/access.log
# Log de erro do Squid
cache_log /home/squid/logs/cache.log
# Detalha objeto da web armazenado
#cache_store_log /home/squid/logs/store.log
## Desativando Melhora o Desenpenho do squid, visto que nao faz tantas requisicoes no disco.
cache_store_log none
# Nome do Proxy
visible_hostname Proxy.unimake
##-----------------------------------------------------------------------------
## SQStat == Monitorando o Squid em tempo real;
acl manager proto cache_object
acl webserver src 10.0.0.254/24
http_access allow manager webserver
http_access deny manager
## SQStat == Fim!
##-----------------------------------------------------------------------------
##-----------------------------------------------------------------------------
# INICIO DAS REGRAS DE BLOQUEIO
# http_access = permine ou proibe o acesso
# Lembre: deny = bloqueio | allow = liberar
# IPs liberados
acl ip_liberados src "/home/squid/ip_liberados"
http_access allow ip_liberados
# Regra Sites liberados!
acl url_liberados url_regex -i "/home/squid/url_liberados"
http_access allow url_liberados
# Regra Dominios bloqueados --- Geralmente dominios com virus e malwares
#acl dominios_bloqueados dstdomain "/home/squid/dominios_bloqueados"
#acl dominios_bloqueados dstdom_regex -i "/home/squid/dominios_bloqueados"
#http_access deny dominios_bloqueados
# Sites dentro da blacklist q contem mallware, virus, etc
acl blacklist dstdom_regex -i "/home/squid/blacklist"
http_access deny blacklist
# Regra Dominios bloqueados paginas brasileiras bloqueadas, pornos, etc
acl blacklist_br dstdomain "/home/squid/blacklist_br"
http_access deny blacklist_br
# Regra de URL bloqueadas!
#acl palavras_bloqueadas dstdom_regex "/home/squid/palavras_bloqueadas"
acl palavras_bloqueadas url_regex -i "/home/squid/palavras_bloqueadas"
# Restricao do Horario de Acesso
acl h_manha time MTWHF 07:00-12:00
acl h_tarde time MTWHF 14:00-18:00
acl h_sabado time A 08:00-11:00
#acl h_full time MTWHF 08:00-18:00
# Restringindo o acesso
http_access deny palavras_bloqueadas h_manha
http_access deny palavras_bloqueadas h_tarde
http_access deny palavras_bloqueadas h_sabado
#http_access deny palavras_bloqueadas h_full
# FIM DAS REGRAS DE BLOQUEIO
##-----------------------------------------------------------------------------
# define a sua rede para o squid
#acl rede_interna src 10.0.0.0/24
acl rede_interna src 10.0.0.0/24
acl all src 0.0.0.0/0.0.0.0
# ACL portas
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/255.255.255.255
acl Safe_ports port 10000 # webmin
acl Safe_ports port 631 # cups
acl Safe_ports port 901 # samba
acl SSL_ports port 443 563 1834 1863 4242 # SSL
acl Safe_ports port 80 8080 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
# validacao das redes!
http_access deny all !rede_interna
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
#http_access allow Safe_ports
http_access deny CONNECT !SSL_ports
http_reply_access deny all !rede_interna
icp_access deny all !rede_interna
# Altera a Menssagen de erro para o portugues!
error_directory /usr/share/squid/errors/Portuguese
