API tools faq
paste
Advertisement
Guest User

include.acl

a guest
Feb 8th, 2013
189
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.56 KB | None | 0 0
raw download clone embed print report
  1. # acl all - not defined by default @ ipfire
  2. acl all src 0.0.0.0/0.0.0.0
  3.  
  4. # tos for local cache
  5. # match dscp 12 if you use mikrotik
  6. zph_mode tos
  7. zph_local 0x30
  8.  
  9. # included configuration by atma (facebook.com/atma.ckp)
  10. # provided as-is with NO GUARANTEE - feel free to modify it to suite your needs
  11.  
  12. # acl for storeurl
  13. acl speedtest dstdom_regex -i speedtest.*\.
  14. acl store_rewrite_list urlpath_regex .*\/speedtest\/.*\.(jpg|txt)
  15. acl store_rewrite_list urlpath_regex .*\.ak\.fbcdn\.net\/
  16. acl store_rewrite_list urlpath_regex http:\/\/199\.91\.15\d\.\d*\/\w{12}\/(\w*)\/(.*)
  17. acl store_rewrite_list urlpath_regex s[0-9]*\.filesonic\.com\/download\/.*
  18. acl store_rewrite_list urlpath_regex [a-zA-Z]{2}[0-9]*\.4shared\.com\/download\/
  19. acl store_rewrite_list urlpath_regex \/(watch\?|get_video\?|videodownload\?|videoplayback.*id)
  20. acl store_rewrite_list urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|wmv|3gp|mp(4|3)|exe|msi|zip|on2|mar|rar|cab)\?
  21. acl store_rewrite_list_domain url_regex ^http:\/\/([a-zA-Z-]+[0-9-]+)\.[A-Za-z]*\.[A-Za-z]*
  22. acl store_rewrite_list_domain url_regex (([a-z]{1,2}[0-9]{1,3})|([0-9]{1,3}[a-z]{1,2}))\.[a-z]*[0-9]?\.[a-z]{3}
  23. acl store_rewrite_list_path urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|avc|zip|mp3|3gp|rar|on2|mar|exe|cab)$
  24. acl store_rewrite_list_domain_CDN url_regex \.rapidshare\.com.*\/[0-9]*\/.*\/[^\/]* ^http:\/\/(www\.ziddu\.com.*\.[^\/]{3,4})\/(.*) \.doubleclick\.net.*
  25. acl store_rewrite_list_domain_CDN url_regex ^http:\/\/[.a-z0-9]*\.photobucket\.com.*\.[a-z]{3}$ quantserve\.com
  26. acl store_rewrite_list_domain_CDN url_regex ^http:\/\/[a-z]+[0-9]\.google\.co(m|\.id)
  27. acl store_rewrite_list_domain_CDN url_regex ^http:\/\/\.www[0-9][0-9]\.xover2.jkt.3d.x.indowebster\.com\/(.*)(rar|zip|flv|wm(a|v)|3gp|mp(4|3)|exe|msi|avi|(mp(e?g|a|e|1|2|3|4))|cab|exe)
  28. acl store_rewrite_list urlpath_regex \/(get_video|videoplayback\?id|videoplayback.*id) \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|wmv|3gp|mp(4|3)|exe|msi|zip|on2|mar|swf)\?
  29. acl store_rewrite_list_domain url_regex ^http:\/\/([a-zA-Z-]+[0-9-]+)\.[A-Za-z]*\.[A-Za-z]*
  30. acl store_rewrite_list_domain url_regex (([a-z]{1,2}[0-9]{1,3})|([0-9]{1,3}[a-z]{1,2}))\.[a-z]*[0-9]?\.[a-z]{3}
  31. acl store_rewrite_list_path urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|avc|zip|mp3|3gp|rar|on2|mar|krf|exe)$
  32. acl store_rewrite_list_domain_CDN url_regex (khm|mt)[0-9]?.google.co(m|\.id) streamate.doublepimp.com.*\.js\? photos-[a-z].ak.fbcdn.net \.rapidshare\.com.*\/[0-9]*\/.*\/[^\/]* ^http:\/\/(www\.ziddu\.com.*\.[^\/]{3,4})\/(.*) \.doubleclick\.net.* yieldmanager cpxinteractive ^http:\/\/[.a-z0-9]*\.photobucket\.com.*\.[a-z]{3}$ quantserve\.com
  33. acl dontrewrite url_regex redbot\.org (get_video|videoplayback\?id|videoplayback.*id).*begin\=[1-9][0-9]* \.php\?
  34. acl getmethod method GET
  35.  
  36. storeurl_access allow speedtest
  37. storeurl_access deny dontrewrite
  38. storeurl_access deny !getmethod
  39. storeurl_access allow store_rewrite_list_domain_CDN
  40. storeurl_access allow store_rewrite_list
  41. storeurl_access allow store_rewrite_list_domain
  42. storeurl_access allow store_rewrite_list_path
  43. storeurl_access deny all
  44.  
  45. storeurl_rewrite_program /etc/squid/storeurl.pl
  46. storeurl_rewrite_children 7
  47. storeurl_rewrite_concurrency 20
  48. #storeurl_bypass on
  49.  
  50. # we'll not cached this stuffs
  51. refresh_pattern \.(index|home|default)\.(php|asp|aspx|htm|html) 0 0% 0
  52. refresh_pattern (get_video|video|videoplay|videoplayback|videodownload|\.flv).*(begin|start)\=[1-9][0-9]* 0 0% 0
  53. refresh_pattern -i (xtrap|login|sources) 0 0% 0
  54. refresh_pattern -i (hackshield|nprotect) 240 100% 420 override-expire override-lastmod reload-into-ims
  55. refresh_pattern -i cgi-bin 0 0% 0
  56. refresh_pattern -i \.(php|asp|aspx|jsp|cgi)\? 0 0% 0
  57. refresh_pattern -i facebook.com 0 0% 0
  58.  
  59. # some cdns w/ filetypes
  60. refresh_pattern (get_video\?|video\?|videoplay\?|videoplayback\?|videodownload\?) 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-no-store negative-ttl=0 store-stale
  61. refresh_pattern -i \.(3gp|mp(3|4)|flv|(m|f)1v|(m|f)4v|on2|fid)\? 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-no-store negative-ttl=0 store-stale
  62. refresh_pattern -i \.(jp(e?g|e|2)|gif|png|tiff?|bmp|tga|svg|ico|swf)\? 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-no-store negative-ttl=0 store-stale
  63. refresh_pattern ^http://.*speedtest.*\.(jp(e?g|e|2)|gif|png|ico|swf|txt) 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-auth ignore-must-revalidate ignore-no-store negative-ttl=10080 store-stale
  64. refresh_pattern ^http://((cbk|mt|khm|mlt|tbn)[0-9]?)\.google\.co(m|\.id) 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-auth ignore-must-revalidate ignore-no-store negative-ttl=10080 store-stale
  65. refresh_pattern \.*safebrowsing.*google\.com 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-auth ignore-must-revalidate ignore-no-store negative-ttl=10080 store-stale
  66. refresh_pattern \.(rackcdn|spilcdn|zgncdn|photobucket)\.com.*\.(jp(e?g|e|2)|gif|png|swf|mp(3|4)) 10800 90% 43200 override-expire ignore-reload ignore-no-cache store-stale
  67. refresh_pattern \.(akamaihd|edgecastcdn|fbcdn)\.net.*\.(jp(e?g|e|2)|gif|png|swf|mp(3|4)) 10800 90% 43200 override-expire ignore-reload ignore-no-cache store-stale
  68.  
  69. # some cdns w/o filetypes
  70. refresh_pattern (resize|timthumb|product_thumb|thumb|img|imag(e|es))\.php? 10800 90% 43200 override-expire ignore-reload ignore-no-cache store-stale
  71. refresh_pattern \.(playfish|rackcdn|spilcdn|zgncdn|zynga)\.com 10800 90% 43200 override-expire ignore-reload ignore-no-cache store-stale
  72. refresh_pattern \.(akamaihd|edgecastcdn|fbcdn)\.net 10800 90% 43200 override-expire ignore-reload ignore-no-cache store-stale
  73. refresh_pattern \.(twimg|yimg|ytimg)\.com 10800 90% 43200 override-expire ignore-reload ignore-no-cache store-stale
  74. refresh_pattern \.gstatic\.com/images\? 10800 90% 43200 override-expire ignore-reload ignore-no-cache store-stale
  75.  
  76. # online gaming, frequently updates...
  77. refresh_pattern ^http://file.pb.gemscool.com/hackshield/.* 60 100% 120 override-expire override-lastmod reload-into-ims store-stale
  78. refresh_pattern ^http://file\.atlantica\.gemscool\.com/.*\.* 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
  79. refresh_pattern ^http://file\.pb\.gemscool\.com/gamepatch/.*\.(exe|dll|cab|zip) 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
  80. refresh_pattern ^http://file\.fs\.gemscool\.com/JCE/.*\.(exe|dll|cab|zip) 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
  81. refresh_pattern -i ((25[0-5]|2[0-4][0-9]|1[0-9]{2}|[0-9]{1,2})\.){3}(25[0-5]|2[0-4][0-9]|1[0-9]{2}|[0-9]{1,2}).*\.(exe|zip|kom|stg|npz|swf)$ 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth ignore-no-store store-stale
  82. refresh_pattern ^http://.*\.cabalonline\.co\.id/.*\.(cab|zip|exe|rar|dat) 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
  83. refresh_pattern ^http://.*\.gemscool\.com/.*\.(cab|zip|exe|rar|dat) 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
  84. refresh_pattern ^http://patch\.crossfire\.web\.id/.*\.(cab|zip|exe|rar|dat) 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
  85. refresh_pattern ^http://patch\.gfo\.web\.id/.*\.(bz2|ini|txt|dds) 10080 90% 43200 override-expire reload-into-ims stale-while-revalidate=2592000 ignore-private ignore-no-cache
  86. refresh_pattern ^http:\/\/patch.gfo.*\/ 43200 100% 43200 ignore-reload override-lastmod reload-into-ims override-expire ignore-no-cache ignore-private
  87. refresh_pattern -i \.gemscool.com.*\.(exe|dll|cab|zip|iop|npz|swf)$ 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
  88. refresh_pattern -i \.crossfire.web.id.*\.(cab|zip|exe|rar|dat|swf)$ 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
  89. refresh_pattern -i \.cabalonline.co.id.*\.(cab|zip|exe|rar|dat|swf)$ 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
  90.  
  91. # av and windows updates
  92. refresh_pattern windowsupdate.com/.*\.(cab|exe|msu|msi) 10080 80% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  93. refresh_pattern -i microsoft.com/.*\.(cab|exe|msu|msi) 10080 80% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  94. refresh_pattern guru.avg.com/.*\.(bin) 10800 90% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  95. refresh_pattern avast.com.*\.vpx 10800 90% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  96. refresh_pattern (avgate|avira).*\.(idx|gz)$ 10800 90% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  97. refresh_pattern kaspersky.*\.avc$ 10800 90% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  98. refresh_pattern liveupdate.symantecliveupdate.com.*\.zip 10800 90% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  99. refresh_pattern .update.nai.com/.*\.(gem|zip|mcs) 10800 90% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  100. refresh_pattern .symantec.com.*\(exe|zip) 10800 90% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  101. refresh_pattern mbamupdates.com.*\.ref 10800 90% 43200 ignore-no-cache ignore-no-store ignore-reload store-stale
  102.  
  103.  
  104. # specific extensions
  105. refresh_pattern -i \.(3gp|mp(3|4)|flv|(m|f)1v|(m|f)4v|on2|fid)$ 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-must-revalidate store-stale
  106. refresh_pattern -i \.(aac|asf|flac|mpc|nsv|og(g|m|a))$ 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-must-revalidate store-stale
  107. refresh_pattern -i \.(avi|mov|wm(a|v)|mp(e?g|a|e|v)|mk(a|v))$ 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-must-revalidate store-stale
  108. refresh_pattern -i \.(jp(e?g|e|2)|gif|png|tiff?|bmp|tga|svg|ico|swf)$ 10800 90% 43200 override-expire ignore-reload ignore-no-cache ignore-private ignore-must-revalidate store-stale
  109. refresh_pattern -i \.(exe|ms(i|u|p)|cab|bin|mar|xpi|psf)$ 10080 90% 43200 reload-into-ims ignore-no-cache ignore-must-revalidate
  110. refresh_pattern -i \.(z(ip|[0-9]{2})|r(ar|[0-9]{2})|7z|bz2|gz|tar|rpm|deb|xz|phpgz)$ 10080 90% 43200 override-expire reload-into-ims ignore-no-cache ignore-must-revalidate
  111. refresh_pattern -i \.(htm|html|js|css|xml)$ 10080 90% 43200 override-expire reload-into-ims ignore-no-cache store-stale
  112.  
  113. # other
  114. refresh_pattern ^ftp 1440 20% 10080
  115. refresh_pattern ^gopher 1440 0% 1440
  116. refresh_pattern . 180 80% 10080 reload-into-ims ignore-no-cache ignore-private store-stale
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!