Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # WELCOME TO SQUID 2.6.STABLE5
- #---las r3des------
- http_port 192.168.100.2:8080
- http_port 192.168.101.2:8080
- http_port 192.168.102.2:8080
- http_port 192.168.103.2:8080
- http_port 192.168.104.2:8080
- cache_mem 32 MB
- acl all src 0.0.0.0/0.0.0.0
- acl manager proto cache_object
- acl localhost src 127.0.0.1/255.255.255.255
- acl to_localhost dst 127.0.0.0/8
- #<----- empezar ACLS PARA UNT
- # Definicion de grupos de acceso
- acl labs src "/etc/squid/lan/labs"
- acl oginf src "/etc/squid/lan/oginf"
- acl of_acad src "/etc/squid/lan/of_acad"
- acl of_adm src "/etc/squid/lan/of_adm"
- acl sinrango src "/etc/squid/lan/sinrango"
- acl msnin src "/etc/squid/msn/msnin"
- #acl admin src 192.168.101.21
- acl admin src "/etc/squid/lan/admins"
- #-----archivos prohibidos
- #acl multimedia src "/etc/squid/archivos/multimedia"
- #acl peligrosos src "/etc/squid/archivos/peligrosos"
- acl noper url_regex "/etc/squid/nopermitir/noper"
- acl multimedia url_regex "/etc/squid/archivos/multimedia"
- acl peligrosos url_regex "/etc/squid/archivos/peligrosos"
- acl msn url_regex "/etc/squid/msn/msn"
- #<--
- #<--ports
- acl msn_ports port 1863 6901 6891-6900
- acl msn_aplication req_mime_type -i ^aplication/xmsn-messenger$
- acl msn_gateway url_regex -i agteway.dll
- acl SSL_ports port 443 # https
- acl SSL_ports port 563 # snews
- acl SSL_ports port 873 # rsync
- ##
- acl SSL_ports port 5222 # MSG-INT
- acl SSL_ports port 5223 # MSG-INT
- acl SSL_ports port 5269 # MSG-INT
- acl SSL_ports port 5280 # MSG-INT
- ##
- acl Safe_ports port 80 # http
- acl Safe_ports port 21 # ftp
- acl Safe_ports port 443 # https
- acl Safe_ports port 70 # gopher
- acl Safe_ports port 210 # wais
- acl Safe_ports port 1025-65535 # unregistered ports
- acl Safe_ports port 280 # http-mgmt
- acl Safe_ports port 488 # gss-http
- acl Safe_ports port 591 # filemaker
- acl Safe_ports port 777 # multiling http
- acl Safe_ports port 631 # cups
- acl Safe_ports port 873 # rsync
- acl Safe_ports port 901 # SWAT
- acl purge method PURGE
- acl CONNECT method CONNECT
- #---------
- http_access allow manager localhost
- http_access deny manager
- # Only allow purge requests from localhost
- http_access allow purge localhost
- http_access deny purge
- # Deny requests to unknown ports
- http_access deny !Safe_ports
- # Deny CONNECT to other than SSL ports
- http_access deny CONNECT !SSL_ports
- http_access allow localhost
- http_access allow labs !noper !peligrosos !multimedia !msn
- http_access allow oginf !noper !peligrosos !multimedia !msn
- http_access allow of_acad !noper !peligrosos !multimedia !msn
- http_access allow of_adm !noper !peligrosos !multimedia !msn
- http_access allow sinrango !noper !peligrosos !multimedia !msn
- #---------linea abajo agregada------>
- http_access allow msnin !noper !peligrosos !multimedia msn
- #---------linea arriba agregada------>
- http_access allow admin
- http_access deny msn
- http_access deny msn_aplication
- http_access deny msn_gateway
- http_access deny msn_ports
- http_access deny CONNECT msn_ports
- # And finally deny all other access to this proxy
- http_access deny all
- http_reply_access deny msn !msnin
- # and finally allow by default
- http_reply_access allow all
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement