Advertisement
Guest User

Untitled

a guest
Jul 7th, 2014
484
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. auth_param negotiate program /usr/lib/squid3/squid_kerb_auth -s HTTP/ubuntu.TestAtomtex.net@TESTATOMTEX.NET
  2. auth_param negotiate children 10
  3. auth_param negotiate keep_alive on
  4. auth_param basic program /usr/lib/squid3/ncsa_auth /etc/squid3/basicusers
  5. external_acl_type ldap_verify %LOGIN /usr/lib/squid3/squid_ldap_group -R -b "dc=TestAtomtex,dc=net" \
  6. -f "(&(objectclass=user)(sAMAccountName=%v)(memberOf=cn=%a,ou=groups,dc=TestAtomtex,dc=net))" \
  7. -D squidreader@TestAtomtex.net -K -W /etc/squid3/squidreaderpass 192.168.2.15
  8. acl inet1_users external ldap_verify Inet1
  9. acl inet2_users external ldap_verify Inet2
  10. acl manager proto cache_object
  11. acl lan proxy_auth REQUIRED
  12. acl localhost src 192.168.2.2/32 ::1
  13. acl DeniedSites dstdomain .mail.ru .vk.com
  14. acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
  15. acl SSL_ports port 443
  16. acl Safe_ports port 80 # http
  17. acl Safe_ports port 21 # ftp
  18. acl Safe_ports port 443 # https
  19. acl Safe_ports port 70 # gopher
  20. acl Safe_ports port 210 # wais
  21. acl Safe_ports port 1025-65535 # unregistered ports
  22. acl Safe_ports port 280 # http-mgmt
  23. acl Safe_ports port 488 # gss-http
  24. acl Safe_ports port 591 # filemaker
  25. acl Safe_ports port 777 # multiling http
  26. acl CONNECT method CONNECT
  27. http_port 3128
  28. http_access allow manager localhost
  29. #http_access deny lan DeniedSites
  30. http_access allow lan
  31. http_access deny !Safe_ports
  32. http_access deny CONNECT !SSL_ports
  33. http_access allow localhost
  34. http_access deny inet1_users DeniedSites
  35. http_access allow inet1_users
  36. http_access allow inet2_users DeniedSites
  37. http_access deny !lan all
  38. http_access deny all
  39. coredump_dir /var/spool/squid3
Advertisement
Advertisement
Advertisement
RAW Paste Data Copied
Advertisement