Pastebin launched a little side project called VERYVIRAL.com, check it out ;-) Want more features on Pastebin? Sign Up, it's FREE!
Guest

Untitled

By: a guest on May 7th, 2012  |  syntax: None  |  size: 2.67 KB  |  views: 49  |  expires: Never
download  |  raw  |  embed  |  report abuse  |  print
Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)
  1. #
  2. # Recommended minimum configuration:
  3. #
  4. acl manager proto cache_object
  5. acl localhost src 127.0.0.1/32 ::1
  6. acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
  7.  
  8. # Example rule allowing access from your local networks.
  9. # Adapt to list your (internal) IP networks from where browsing
  10. # should be allowed
  11. acl localnet src 10.0.0.0/8     # RFC1918 possible internal network
  12. acl localnet src 172.16.0.0/12  # RFC1918 possible internal network
  13. acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
  14. acl localnet src fc00::/7       # RFC 4193 local private network range
  15. acl localnet src fe80::/10      # RFC 4291 link-local (directly plugged) machines
  16.  
  17. acl SSL_ports port 443
  18. acl Safe_ports port 80          # http
  19. acl Safe_ports port 21          # ftp
  20. acl Safe_ports port 443         # https
  21. acl Safe_ports port 70          # gopher
  22. acl Safe_ports port 210         # wais
  23. acl Safe_ports port 1025-65535  # unregistered ports
  24. acl Safe_ports port 280         # http-mgmt
  25. acl Safe_ports port 488         # gss-http
  26. acl Safe_ports port 591         # filemaker
  27. acl Safe_ports port 777         # multiling http
  28. acl CONNECT method CONNECT
  29.  
  30. #
  31. # Recommended minimum Access Permission configuration:
  32. #
  33. # Only allow cachemgr access from localhost
  34. http_access allow manager localhost
  35. http_access deny manager
  36.  
  37. # Deny requests to certain unsafe ports
  38. http_access deny !Safe_ports
  39.  
  40. # Deny CONNECT to other than secure SSL ports
  41. http_access deny CONNECT !SSL_ports
  42.  
  43. # We strongly recommend the following be uncommented to protect innocent
  44. # web applications running on the proxy server who think the only
  45. # one who can access services on "localhost" is a local user
  46. #http_access deny to_localhost
  47.  
  48. #
  49. # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
  50. #
  51.  
  52. # Example rule allowing access from your local networks.
  53. # Adapt localnet in the ACL section to list your (internal) IP networks
  54. # from where browsing should be allowed
  55. http_access allow all
  56. http_access allow localhost
  57.  
  58. # And finally deny all other access to this proxy
  59. #http_access deny all
  60.  
  61. # Squid normally listens to port 3128
  62. http_port 192.168.1.150:3128 transparent
  63.  
  64. # We recommend you to use at least the following line.
  65. hierarchy_stoplist cgi-bin ?
  66.  
  67. # Uncomment and adjust the following to add a disk cache directory.
  68. cache_dir ufs /usr/local/var/cache 100 16 256
  69.  
  70. # Leave coredumps in the first cache dir
  71. coredump_dir /usr/local/var/cache
  72.  
  73. # Add any of your own refresh_pattern entries above these.
  74. refresh_pattern ^ftp:           1440    20%     10080
  75. refresh_pattern ^gopher:        1440    0%      1440
  76. refresh_pattern -i (/cgi-bin/|\?) 0     0%      0
  77. refresh_pattern .               0       20%     4320
  78.  
  79.  
  80. cachemgr_passwd none all
  81. http_access allow manager localhost
  82. http_access deny manager
  83. visible_hostname test.cache
clone this paste RAW Paste Data