Advertisement
d3v1lg0

gilaaaaaaaaaaaaaaaaa.cacattttt

Feb 14th, 2017
220
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.83 KB | None | 0 0
  1. ##################################################################################################################################################################################################################################
  2. # Recommended minimum configuration:
  3. # Example rule allowing access from your local networks.
  4. # Adapt to list your (internal) IP networks from where browsing
  5. # should be allowed
  6. acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
  7. acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
  8. acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
  9. acl localnet src fc00::/7 # RFC 4193 local private network range
  10. acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines
  11.  
  12. acl SSL_ports port 443
  13. acl Safe_ports port 80 # http
  14. acl Safe_ports port 21 # ftp
  15. acl Safe_ports port 443 # https
  16. acl Safe_ports port 70 # gopher
  17. acl Safe_ports port 210 # wais
  18. acl Safe_ports port 1025-65535 # unregistered ports
  19. acl Safe_ports port 280 # http-mgmt
  20. acl Safe_ports port 488 # gss-http
  21. acl Safe_ports port 591 # filemaker
  22. acl Safe_ports port 777 # multiling http
  23. acl CONNECT method CONNECT
  24. #
  25. acl adsites url_regex -i "/etc/squid/adslist.txt"
  26. acl ads dstdom_regex "/etc/squid/ad_block.txt"
  27. http_access deny ads
  28. http_access deny adsites
  29. #
  30. #never_direct allow all
  31. # STOREID ACCESS LIST
  32. acl urlrewrite dstdomain .fbcdn.net .akamaihd.net .fbsbx.com
  33. acl storeid-helper url_regex -i ^https?:\/\/attachment\.fbsbx\.com\/.*\?(id=[0-9]*).*
  34. acl storeid-helper url_regex -i \.fbsbx\.com\/.*\/(.*\.(unity3d|pak|zip|exe|dll|jpg|png|gif|swf)/)$
  35. acl storeid-helper url_regex -i ^https?:\/\/.*\.ytimg\.com(.*\.(webp|jpg|gif))
  36. acl storeid-helper url_regex -i ^https?:\/\/([^\.]*)\.yimg\.com\/(.*)
  37. acl storeid-helper url_regex -i ^https?:\/\/.*\.gstatic\.com\/images\?q=tbn\:(.*)
  38. acl storeid-helper url_regex -i ^https?:\/\/.*\.reverbnation\.com\/.*\/(ec_stream_song|download_song_direct|stream_song)\/([0-9]*).*
  39. acl storeid-helper url_regex -i ^https?:\/\/([a-z0-9.]*)(\.doubleclick\.net|\.quantserve\.com|.exoclick\.com|interclick.\com|\.googlesyndication\.com|\.auditude\.com|.visiblemeasures\.com|yieldmanager|cpxinteractive)(.*)
  40. acl storeid-helper url_regex -i ^https?:\/\/(.*?)\/(ads)\?(.*?)
  41. acl storeid-helper url_regex -i ^https?:\/\/.*steampowered\.com\/.*\/([0-9]+\/(.*))
  42. acl speedtest url_regex -i ^https?:\/\/(.*?)\/speedtest\/.*\.(jpg|txt|png|gif|swf)\?.*
  43. acl speedtest url_regex -i speedtest\/.*\.(jpg|txt|png|gif|swf)\?.*
  44. acl reverbnation url_regex -i reverbnation.*audio_player.*ec_stream_song.*$
  45. acl utmgif url_regex -i utm.gif.*
  46. acl playstoreandroid url_regex -i c.android.clients.google.com.market.GetBinary.GetBinary.*
  47. acl youtube url_regex -i youtube.*(ptracking|stream_204|player_204|gen_204).*$
  48. acl youtube url_regex -i \.c\.(youtube|google)\.com\/(get_video|videoplayback|videoplay).*$
  49. acl youtube url_regex -i (youtube|google).*\/videoplayback\?.*
  50. acl loop_302 http_status 302
  51. acl getmethod method GET
  52. #
  53. acl Purge method PURGE
  54. #
  55. acl bypast dstdomain .gmail.com
  56. acl bypast dstdomain \.(mail.yahoo.com|bri.co.id|bankmandiri.co.id|klikbca.com|bni.com)
  57. ##
  58. ##STORE-ID OPTION
  59. store_id_program /etc/squid/store-id.pl
  60. store_id_children 25 startup=15 idle=5 concurrency=10
  61. store_id_access deny !getmethod
  62. store_id_access allow urlrewrite
  63. store_id_access allow storeid-helper
  64. store_id_access allow speedtest
  65. store_id_access allow reverbnation
  66. store_id_access allow utmgif
  67. store_id_access allow playstoreandroid
  68. store_id_access allow youtube
  69. store_id_access deny all
  70. store_miss deny youtube loop_302
  71. send_hit deny youtube loop_302
  72. # Recommended minimum Access Permission configuration:
  73. http_access deny !Safe_ports
  74. http_access deny CONNECT !SSL_ports
  75. # Only allow cachemgr access from localhost
  76. http_access allow localhost manager
  77. http_access allow localhost Purge
  78. http_access deny manager
  79. http_access deny Purge
  80. http_access allow localnet
  81. http_access allow localhost
  82. # And finally deny all other access to this proxy
  83. http_access deny all
  84. # Squid normally listens to port 3128
  85. http_port 3127
  86. http_port 3129 intercept
  87. ##
  88. #cache_dir ufs /var/spool/squid3 100 16 256
  89. cache_dir ufs /cache/0 6000 14 256
  90. cache_dir ufs /cache/1 6000 14 256
  91. cache_dir ufs /cache/2 6000 14 256
  92. maximum_object_size_in_memory 32 KB
  93. memory_replacement_policy heap GDSF
  94. cache_replacement_policy heap LFUDA
  95. minimum_object_size 0 KB
  96. maximum_object_size 700 KB
  97. cache_swap_low 90
  98. cache_swap_high 95
  99. max_filedesc 65535
  100. cache_mem 128 MB
  101. logfile_rotate 10
  102. memory_pools off
  103. #
  104. dns_nameservers 127.0.0.1
  105. range_offset_limit -1
  106. quick_abort_min -1 KB
  107. log_icp_queries off
  108. client_db off
  109. half_closed_clients off
  110. cache_mgr fox.skd@gmail.com
  111. forwarded_for off
  112. visible_hostname de-isle.blogspot.co.id
  113. #
  114. global_internal_static off
  115. max_stale 10 years
  116. retry_on_error on
  117. buffered_logs on
  118. read_ahead_gap 32 KB
  119. # Leave coredumps in the first cache dir
  120. coredump_dir /var/spool/squid
  121. # Add any of your own refresh_pattern entries above these.
  122. #
  123. refresh_pattern -i \.(gif|png|ico|jpg|jpeg|jp2|webp)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  124. refresh_pattern -i \.(jpx|j2k|j2c|fpx|bmp|tif|tiff|bif)$ 100000 90% 20000 override-expire reload-into-ims ignore-no-store ignore-private
  125. refresh_pattern -i \.(pcd|pict|rif|exif|hdr|bpg|img|jif|jfif|lsr)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  126. refresh_pattern -i \.(woff|woff2|eps|ttf|otf|svg|svgi|svgz|ps|ps1|acsm|eot)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  127. refresh_pattern -i \.(swf|js|ejs)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  128. refresh_pattern -i \.(wav|css|class|dat|zsci|ver|advcs)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  129. refresh_pattern -i \.(mpa|m2a|mpe|avi|mov|mpg|mpeg|mpg3|mpg4|mpg5)$ 0 90% 200000 reload-into-ims ignore-no-store ignore-private
  130. refresh_pattern -i \.(m1s|mp2v|m2v|m2s|m2ts|wmx|rm|rmvb|3pg|3gpp|omg|ogm|asf|war)$ 0 90% 200000 reload-into-ims ignore-no-store ignore-private
  131. refresh_pattern -i \.(asx|mp2|mp3|mp4|mp5|wmv|flv|mts|f4v|f4|pls|midi|mid)$ 0 90% 200000 reload-into-ims ignore-no-store ignore-private
  132. refresh_pattern -i \.(htm|html)$ 9440 90% 200000 reload-into-ims ignore-no-store ignore-private
  133. refresh_pattern -i \.(xml|flow|asp|aspx)$ 0 90% 200000
  134. refresh_pattern -i \.(json)$ 0 90% 200000
  135. refresh_pattern -i \.(m3u8|ts)$ 0 90% 200000
  136. refresh_pattern -i \.(app|bin|deb|rpm|drpm|exe|zip|zipx|tar|tgz|tbz2|tlz|iso|arj|cfs|dar|jar)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  137. refresh_pattern -i \.(bz|bz2|ipa|ram|rar|uxx|gz|msi|dll|lz|lzma|7z|s7z|Z|z|zz|sz)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  138. refresh_pattern -i \.(exe|msi)$ 0 90% 200000
  139. refresh_pattern -i \.(cab|psf|vidt|apk|wtex|hz|ova|ovf)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  140. refresh_pattern -i \.(ppt|pptx|doc|docx|docm|docb|dot|pdf|pub|ps)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  141. refresh_pattern -i \.(xls|xlsx|xlt|xlm|xlsm|xltm|xlw|csv|txt)$ 100000 90% 200000 override-expire reload-into-ims ignore-no-store ignore-private
  142. ##
  143. refresh_pattern ^ftp: 1440 20% 10080
  144. refresh_pattern ^gopher: 1440 0% 1440
  145. refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
  146. refresh_pattern . 0 20% 4320
  147. #refresh_pattern ^ftp: 10080 95% 10080
  148. #refresh_pattern ^gopher: 1440 0% 1440
  149. #refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
  150. #refresh_pattern . 180 95% 10800
  151. ##########################################################################################################################################################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement