API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 23rd, 2014
47
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.28 KB | None | 0 0
raw download clone embed print report
  1. # ----------------------------------------------------------------------
  2. # WARNING - do not edit this template unless you know what you are doing
  3. # ----------------------------------------------------------------------
  4.  
  5. # host file
  6. hosts_file /etc/hosts
  7.  
  8. # the parent cache
  9. cache_peer %PARENTPROXY% parent %PARENTPORT% 7 no-query no-digest no-netdb-exchange default
  10.  
  11.  
  12. # disk and memory cache settings
  13. cache_dir ufs %CACHEDIR% %CACHESIZE% 16 256
  14. maximum_object_size %MAXOBJECTSIZE%
  15.  
  16.  
  17. # store coredumps in the first cache dir
  18. coredump_dir %CACHEDIR%
  19.  
  20.  
  21. # the hostname squid displays in error messages
  22. visible_hostname %VISIBLEHOSTNAME%
  23.  
  24.  
  25. # log & process ID file details
  26. cache_access_log stdio:%ACCESSLOG%
  27. cache_store_log stdio:%STORELOG%
  28. cache_log %CACHELOG%
  29. pid_filename %PIDFILE%
  30.  
  31.  
  32. # Squid listening port
  33. http_port %PORT%
  34.  
  35.  
  36. # Access Control lists
  37. acl SSL_ports port 443
  38. acl Safe_ports port 80 # http
  39. acl Safe_ports port 21 # ftp
  40. acl Safe_ports port 443 # https
  41. acl Safe_ports port 70 # gopher
  42. acl Safe_ports port 210 # wais
  43. acl Safe_ports port 1025-65535 # unregistered ports
  44. acl Safe_ports port 280 # http-mgmt
  45. acl Safe_ports port 488 # gss-http
  46. acl Safe_ports port 591 # filemaker
  47. acl Safe_ports port 777 # multiling http
  48. acl CONNECT method CONNECT
  49. %ALLOWEDHOSTS%
  50. %DIRECTHOSTS%
  51.  
  52.  
  53. # Only allow cachemgr access from localhost
  54. http_access allow localhost manager
  55. http_access deny manager
  56.  
  57.  
  58. # Deny requests to certain unsafe ports
  59. http_access deny !Safe_ports
  60.  
  61.  
  62. # Deny CONNECT to other than secure SSL ports
  63. http_access deny CONNECT !SSL_ports
  64.  
  65.  
  66. # protect web apps running on the proxy host from external users
  67. # http_access deny to_localhost
  68.  
  69.  
  70. # rules for client access go here
  71. http_access allow localhost
  72. %HTTPACCESSALLOWED%
  73.  
  74.  
  75. # after allowed hosts, deny all other access to this proxy
  76. # don't list any other access settings below this point
  77. http_access deny all
  78.  
  79.  
  80. # specify which hosts have direct access (bypassing the parent proxy)
  81. %ALWAYSDIRECT%
  82. always_direct deny all
  83.  
  84.  
  85. # hierarchy stop list (squid-recommended)
  86. hierarchy_stoplist cgi-bin ?
  87.  
  88.  
  89.  
  90. # refresh patterns (squid-recommended)
  91. refresh_pattern ^ftp: 1440 20% 10080
  92. refresh_pattern ^gopher: 1440 0% 1440
  93. refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
  94. refresh_pattern . 0 20% 4320
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!