miércoles, 13 de enero de 2010

SQUID.CONF

http_port 3128 transparent
icp_port 3130

##Utiliza autenticacion modulo ncsa_auth htpasswd /etc/squid/claves usuario###
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/claves



cache_swap_low 90
cache_swap_high 95
maximum_object_size 4096 KB


cache_dir ufs /var/spool/squid 3000 16 256

cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
client_netmask 255.255.255.0



acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255

acl mipc src 192.168.130.155/255.255.255.255
acl red src 192.168.130.0/255.255.255.0
acl sitiosdenegados url_regex "/etc/squid/sitiosdenegados"

##Utiliza autenticacion creada con htpasswd /etc/squid/claves usuario###
acl password proxy_auth REQUIRED



acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

#Default configuration:
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports


#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#
http_access allow localhost

http_access allow red password !sitiosdenegados
http_access allow mipc password !sitiosdenegados
http_access deny all

No hay comentarios: