API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 21st, 2017
126
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.72 KB | None | 0 0
raw download clone embed print report
  1. #################################
  2. # HIGH PERFORMANCE SQUID 2.7
  3. # Config date : 21 April 2010
  4. #################################
  5.  
  6. # ACCESS CONTROLS
  7. # —————
  8. acl QUERY urlpath_regex -i cgi-bin ? .php$ .asp$ .shtml$ .cfm$ .cfml$ .phtml$ .php3$ localhost
  9. acl localnet src 10.0.0.0/8
  10. acl localnet src 172.16.0.0/12
  11. acl localnet src 192.168.0.0/16
  12. acl all src 0.0.0.0/0.0.0.0
  13. acl localhost src 127.0.0.1/32
  14. acl safeports port 21 70 80 210 280 443 488 563 591 631 777 901 81 3128 1025-65535
  15. acl sslports port 443 563 81
  16. acl manager proto cache_object
  17. acl purge method PURGE
  18. acl connect method CONNECT
  19. acl ym dstdomain .messenger.yahoo.com .psq.yahoo.com
  20. acl ym dstdomain .us.il.yimg.com .msg.yahoo.com .pager.yahoo.com
  21. acl ym dstdomain .rareedge.com .ytunnelpro.com .chat.yahoo.com
  22. acl ym dstdomain .voice.yahoo.com
  23. acl ymregex url_regex yupdater.yim ymsgr myspaceim
  24.  
  25. http_access deny ym
  26. http_access deny ymregex
  27. http_access allow manager localhost
  28. http_access deny manager
  29. http_access allow purge localhost
  30. http_access deny purge
  31. http_access deny !safeports
  32. http_access deny CONNECT !sslports
  33. http_access allow localhost
  34. http_access allow localnet
  35. http_access deny all
  36.  
  37. # NETWORK OPTIONS
  38. # —————
  39. http_port 3128 transparent
  40. icp_access deny all
  41.  
  42. # OPTIONS WHICH AFFECT THE CACHE SIZE
  43. # ———————————–
  44. cache_mem 8 MB
  45. maximum_object_size_in_memory 32 KB
  46. memory_replacement_policy heap GDSF
  47. cache_replacement_policy heap LFUDA
  48. cache_dir aufs /var/spool/squid 4000 10 256
  49. maximum_object_size 128000 KB
  50. cache_swap_low 90
  51. cache_swap_high 95
  52. update_headers off
  53.  
  54. # LOGFILE PATHNAMES AND CACHE DIRECTORIES
  55. # —————————————
  56. #access_log /var/log/squid/access.log
  57. access_log none
  58. cache_log /var/log/squid/cache.log
  59. #cache_log /dev/null
  60. cache_store_log none
  61. logfile_rotate 5
  62. log_ip_on_direct off
  63. log_icp_queries off
  64. buffered_logs off
  65. netdb_filename none
  66. client_db off
  67. #pid_filename /var/run/squid.pid
  68.  
  69. # OPTIONS FOR TUNING THE CACHE
  70. # —————————-
  71. cache deny QUERY
  72. refresh_pattern ^ftp: 1440 20% 10080
  73. refresh_pattern ^gopher: 1440 0% 1440
  74. refresh_pattern -i .(gif|png|jp?g|ico|bmp|tiff?)$ 10080 95% 43200 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-private
  75. refresh_pattern -i .(rpm|cab|deb|exe|msi|msu|zip|tar|gz|tgz|rar|bin|7z|doc?|xls?|ppt?|pdf|nth|psd|sis)$ 10080 90% 43200 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-private
  76. refresh_pattern -i .(avi|iso|wav|mid|mp?|mpeg|mov|3gp|wm?|swf|flv|x-flv|axd)$ 43200 95% 432000 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-private
  77. refresh_pattern -i .(html|htm|css|js)$ 1440 75% 40320
  78. refresh_pattern -i .index.(html|htm)$ 0 75% 10080
  79. refresh_pattern -i (/cgi-bin/|?) 0 0% 0
  80. refresh_pattern . 1440 90% 10080
  81.  
  82. quick_abort_min 0 KB
  83. quick_abort_max 0 KB
  84. quick_abort_pct 100
  85. store_avg_object_size 13 KB
  86.  
  87. # HTTP OPTIONS
  88. # ————
  89. server_http11 on
  90. collapsed_forwarding on
  91. vary_ignore_expire on
  92.  
  93. # ANONIMITY OPTIONS
  94. # —————–
  95. header_access From deny all
  96. header_access Server deny all
  97. header_access Link deny all
  98. header_access Via deny all
  99. header_access X-Forwarded-For deny all
  100.  
  101. # TIMEOUTS
  102. # ——–
  103. forward_timeout 240 second
  104. connect_timeout 30 second
  105. peer_connect_timeout 5 second
  106. read_timeout 600 second
  107. request_timeout 60 second
  108. persistent_request_timeout 60 second
  109. client_lifetime 86400 second
  110. half_closed_clients off
  111. pconn_timeout 60 second
  112. shutdown_lifetime 10 second
  113.  
  114. # ADMINISTRATIVE PARAMETERS
  115. # ————————-
  116. cache_mgr geazzy
  117. cache_effective_user proxy
  118. cache_effective_group proxy
  119. httpd_suppress_version_string on
  120. visible_hostname localhost
  121.  
  122. # ADVANCED NETWORKING OPTIONS
  123. # —————————
  124. max_filedescriptors 2048
  125.  
  126. # DNS OPTIONS
  127. # ———–
  128. check_hostnames off
  129. dns_timeout 10 seconds
  130. #DNS NAWALA
  131. dns_nameservers 180.131.144.144
  132. dns_nameservers 180.131.144.145
  133. hosts_file /etc/hosts
  134. ipcache_size 8192
  135. ipcache_low 90
  136. ipcache_high 95
  137.  
  138. # MISCELLANEOUS
  139. # ————-
  140. memory_pools off
  141. forwarded_for off
  142. reload_into_ims on
  143. coredump_dir /var/spool/squid
  144. pipeline_prefetch on
  145. offline_mode off
  146. ###### END CONFIGURATION ###########
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!