Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
- acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
- acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
- acl localnet src fc00::/7 # RFC 4193 local private network range
- acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines
- acl SSL_ports port 443
- acl Safe_ports port 80 # http
- acl Safe_ports port 21 # ftp
- acl Safe_ports port 443 # https
- acl Safe_ports port 70 # gopher
- acl Safe_ports port 210 # wais
- acl Safe_ports port 1025-65535 # unregistered ports
- acl Safe_ports port 280 # http-mgmt
- acl Safe_ports port 488 # gss-http
- acl Safe_ports port 591 # filemaker
- acl Safe_ports port 777 # multiling http
- acl CONNECT method CONNECT
- http_access allow localnet
- http_access allow localhost
- # And finally deny all other access to this proxy
- http_access deny all
- http_port 3128
- http_port 3129 intercept
- cache_dir ufs /cache 45000 16 256
- acl updatesites dstdom_regex "/etc/squid/updatesites.txt"
- cache allow updatesites
- cache deny all
- maximum_object_size 5000 MB
- range_offset_limit -1
- quick_abort_min -1 KB
- cache_store_log /var/log/squid/store.log
- access_log daemon:/var/log/squid/access.log squid
- cache_log /var/log/squid/cache.log
- coredump_dir /cache
- store_id_access allow updatesites
- store_id_access deny all
- store_id_program /lib/squid/storeid_file_rewrite /etc/squid/storeid_rewrite.conf
- store_id_children 30 startup=3 idle=1 concurrency=0
- refresh_pattern ([^.]+.|)adobe.com/.*\.(zip|exe) 43200 100% 43200 reload-into-ims ignore-reload ignore-no-store override-expire override-lastmod
- refresh_pattern ([^.]+.|)java.com/.*\.(zip|exe) 43200 100% 43200 reload-into-ims ignore-reload ignore-no-store override-expire override-lastmod
- refresh_pattern ([^.]+.|)sun.com/.*\.(zip|exe) 43200 100% 43200 reload-into-ims ignore-reload ignore-no-store override-expire override-lastmod
- refresh_pattern ([^.]+.|)oracle.com/.*\.(zip|exe|tar.gz) 43200 100% 43200 reload-into-ims ignore-reload ignore-no-store override-expire override-lastmod
- refresh_pattern ([^.]+.|)cs\.steampowered\.com 43200 100% 43200 reload-into-ims ignore-reload ignore-no-store override-expire override-lastmod
- refresh_pattern -i appldnld\.apple\.com 43200 100% 43200 ignore-reload ignore-no-store override-expire override-lastmod
- refresh_pattern -i ([^.]+.|)apple.com/.*\.(ipa) 43200 100% 43200 ignore-reload ignore-no-store override-expire override-lastmod
- refresh_pattern ([^.]+\.)?(download|(windows)?update)\.(microsoft\.)?com/.*\.(cab|exe|msi|msp|psf) 4320 100% 43200 reload-into-ims ignore-reload ignore-no-store override-expire override-lastmod
- refresh_pattern -i ([^.]+.|)google.com/.*\.(exe|crx) 10080 80% 43200 override-expire override-lastmod ignore-no-cache ignore-reload reload-into-ims ignore-private
- refresh_pattern -i ([^.]+.|)gstatic.com/.*\.(exe|crx) 10080 80% 43200 override-expire override-lastmod ignore-no-cache ignore-reload reload-into-ims ignore-private
- refresh_pattern -i ([^.]+.|)ubuntu.com/.*\.(deb) 10080 80% 43200 override-expire override-lastmod ignore-no-cache ignore-reload reload-into-ims ignore-private
- refresh_pattern ^ftp: 144000 20% 1008000
- refresh_pattern -i \.(deb|rpm|exe|zip|tar|tgz|ram|rar|bin|ppt|doc|tiff|pdf|uxx)$ 260000 100% 260009 override-expire
- refresh_pattern \? 0 0% 4320
- refresh_pattern . 0 20% 4320
- ##################################
- cat /etc/squid/updatesites.txt
- ([^.]+.|)adobe.com
- ([^.]+.|)java.com
- ([^.]+.|)sun.com
- ([^.]+.|)oracle.com
- ([^.]+.|)apple.com
- ([^.]+.|)apple.com
- ([^.]+\.)?(download|(windows)?update)\.(microsoft\.)?com
- ([^.]+.|)ubuntu.com
- ([^.]+.|)steampowered.com
- ([^.]+.|)google.com
- ([^.]+.|)gstatic.com
- ([^.]+.|)microsoft.com
- ([^.]+.|)windowsupdate.com
- #############################################################################################
- root@debian:~# cat /etc/squid/storeid_rewrite.conf
- ^http:\/\/.+?\.ws\.microsoft\.com\/.+?_([0-9a-z]{40})\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|psf|appx) http://wupdate.squid.local/$1
- ^http:\/\/.+?\.windowsupdate\.com\/.+?_([0-9a-z]{40})\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|psf|appx) http://wupdate.squid.local/$1
- ^http:\/\/[^\.]+\.cs\.steampowered\.com\/(.*) http://steamupdates.squid.internal/$1
- ^http:\/\/[^\.]+\.phobos\.apple\.com\/(.*) http://appupdates.apple.squid.internal/$1
- ^http:\/\/[^\.]+\.c\.android\.clients\.google\.com\/(.*) http://androidupdates.google.squid.internal/$1
- ###################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement