vitorsantana
(usa Ubuntu)
Enviado em 09/07/2010 - 15:31h
http_port 2709 transparent
visible_hostname bbfire
cache_mem 256 MB
maximum_object_size_in_memory 128 KB
maximum_object_size 1024 MB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /var/spool/squid 20480 16 256
cache_access_log /var/log/squid/access.log
refresh_pattern ^ftp: 15 20% 2280
refresh_pattern ^gopher: 15 0% 2280
refresh_pattern . 15 20% 2280
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 3389 # TS
acl Safe_ports port 80 # http
acl Safe_ports port 20 # ftp
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 901 # swat
acl Safe_ports port 1025-65535 # portas altas
acl purge method PURGE
acl CONNECT method CONNECT
#acl NOCACHE url_regex -i "/etc/squid/nocache"
#no_cache deny NOCACHE
#GRUPO A
acl IP_A src "/etc/squid/IP_A"
acl SITE_A dstdom_regex -i "/etc/squid/SITE_A"
http_access allow IP_A SITE_A
#GRUPO B
acl IP_B src "/etc/squid/IP_B"
acl SITE_B dstdom_regex -i "/etc/squid/SITE_B"
http_access allow IP_B SITE_B
#GRUPO C
acl IP_C src "/etc/squid/IP_C"
acl SITE_C dstdom_regex -i "/etc/squid/SITE_C"
http_access allow IP_C SITE_C
#GRUPO D
acl IP_D src "/etc/squid/IP_D"
acl SITE_D dstdom_regex -i "/etc/squid/SITE_D"
http_access allow IP_D SITE_D
#GRUPO E
acl IP_E src "/etc/squid/IP_E"
acl SITE_E dstdom_regex -i "/etc/squid/SITE_E"
http_access allow IP_E SITE_E
#ACL CBS
acl SITE_BLOQUEADO url_regex -i "/etc/squid/SITE_BLOQUEADO"
acl html rep_mime_type text/html
reply_body_max_size 0 allow html
reply_body_max_size 910485760 allow all
acl NOCACHE urlpath_regex src "/etc/squid/nocache"
acl SITE_OK url_regex -i "/etc/squid/SITE_OK"
#acl palavras url_regex -i "/etc/squid/palavras"
acl redelocal src 192.168.1.0/24
acl IP_FULL src "/etc/squid/IP_FULL"
#PERMISSÃO DE ACESSO
http_access allow IP_FULL
http_access allow SITE_OK
http_access deny SITE_BLOQUEADO
#http_access deny palavras
http_access allow redelocal
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all