API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 18th, 2019
88
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.49 KB | None | 0 0
raw download clone embed print report
  1. # ----------------------------------------------------------------------
  2. # WARNING - do not edit this template unless you know what you are doing
  3. # ----------------------------------------------------------------------
  4.  
  5. # the parent cache
  6. cache_peer %PARENTPROXY% parent %PARENTPORT% 7 no-query no-digest no-netdb-exchange default
  7.  
  8.  
  9. # performance options
  10. pipeline_prefetch %PIPELINE_PREFETCH%
  11. cache_miss_revalidate %CACHE_MISS_REVALIDATE%
  12. read_ahead_gap %READ_AHEAD_GAP%
  13. cache_replacement_policy %CACHE_REPLACEMENT_POLICY%
  14. memory_replacement_policy %MEMORY_REPLACEMENT_POLICY%
  15.  
  16.  
  17. # disk and memory cache settings
  18. cache_dir ufs %CACHEDIR% %CACHESIZE% 16 256
  19. maximum_object_size %MAXOBJECTSIZE%
  20. cache_mem %MEMCACHESIZE%
  21. maximum_object_size_in_memory %MEMMAXOBJECTSIZE%
  22.  
  23.  
  24. # store coredumps in the first cache dir
  25. coredump_dir %CACHEDIR%
  26.  
  27.  
  28. # the hostname squid displays in error messages
  29. visible_hostname %VISIBLEHOSTNAME%
  30.  
  31.  
  32. # log & process ID file details
  33. cache_access_log stdio:%ACCESSLOG%
  34. cache_store_log stdio:%STORELOG%
  35. cache_log %CACHELOG%
  36. pid_filename %PIDFILE%
  37.  
  38.  
  39. # Squid listening port
  40. http_port %PORT%
  41.  
  42.  
  43. # Access Control lists
  44. acl SSL_ports port 443
  45. acl Safe_ports port 80 # http
  46. acl Safe_ports port 21 # ftp
  47. acl Safe_ports port 443 # https
  48. acl Safe_ports port 70 # gopher
  49. acl Safe_ports port 210 # wais
  50. acl Safe_ports port 1025-65535 # unregistered ports
  51. acl Safe_ports port 280 # http-mgmt
  52. acl Safe_ports port 488 # gss-http
  53. acl Safe_ports port 591 # filemaker
  54. acl Safe_ports port 777 # multiling http
  55. acl CONNECT method CONNECT
  56. %ALLOWEDHOSTS%
  57. %DIRECTHOSTS%
  58.  
  59.  
  60. # Only allow cachemgr access from localhost
  61. http_access allow localhost manager
  62. http_access deny manager
  63.  
  64.  
  65. # Deny requests to certain unsafe ports
  66. http_access deny !Safe_ports
  67.  
  68.  
  69. # Deny CONNECT to other than secure SSL ports
  70. http_access deny CONNECT !SSL_ports
  71.  
  72.  
  73. # protect web apps running on the proxy host from external users
  74. http_access deny to_localhost
  75.  
  76.  
  77. # rules for client access go here
  78. http_access allow localhost
  79. %HTTPACCESSALLOWED%
  80.  
  81.  
  82. # after allowed hosts, deny all other access to this proxy
  83. # don't list any other access settings below this point
  84. http_access deny all
  85.  
  86.  
  87. # specify which hosts have direct access (bypassing the parent proxy)
  88. %ALWAYSDIRECT%
  89. always_direct deny all
  90.  
  91.  
  92. # refresh patterns (squid-recommended)
  93. refresh_pattern ^ftp: 1440 20% 10080
  94. refresh_pattern ^gopher: 1440 0% 1440
  95. refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
  96. refresh_pattern . 0 20% 4320
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!