auth_param negotiate program /usr/lib/squid3/squid_kerb_auth -s HTTP/ubuntu.Test

1. auth_param negotiate program /usr/lib/squid3/squid_kerb_auth -s HTTP/ubuntu.TestAtomtex.net@TESTATOMTEX.NET
2. auth_param negotiate children 10
3. auth_param negotiate keep_alive on
4. auth_param basic program /usr/lib/squid3/ncsa_auth /etc/squid3/basicusers
5. external_acl_type ldap_verify %LOGIN /usr/lib/squid3/squid_ldap_group -R -b "dc=TestAtomtex,dc=net" \
6. -f "(&(objectclass=user)(sAMAccountName=%v)(memberOf=cn=%a,ou=groups,dc=TestAtomtex,dc=net))" \
7. -D squidreader@TestAtomtex.net -K -W /etc/squid3/squidreaderpass 192.168.2.15
8. acl inet1_users external ldap_verify Inet1
9. acl inet2_users external ldap_verify Inet2
10. acl manager proto cache_object
11. acl lan proxy_auth REQUIRED
12. acl localhost src 192.168.2.2/32 ::1
13. acl DeniedSites dstdomain .mail.ru .vk.com
14. acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
15. acl SSL_ports port 443
16. acl Safe_ports port 80 # http
17. acl Safe_ports port 21 # ftp
18. acl Safe_ports port 443 # https
19. acl Safe_ports port 70 # gopher
20. acl Safe_ports port 210 # wais
21. acl Safe_ports port 1025-65535 # unregistered ports
22. acl Safe_ports port 280 # http-mgmt
23. acl Safe_ports port 488 # gss-http
24. acl Safe_ports port 591 # filemaker
25. acl Safe_ports port 777 # multiling http
26. acl CONNECT method CONNECT
27. http_port 3128
28. http_access allow manager localhost
29. #http_access deny lan DeniedSites
30. http_access allow lan
31. http_access deny !Safe_ports
32. http_access deny CONNECT !SSL_ports
33. http_access allow localhost
34. http_access deny inet1_users DeniedSites
35. http_access allow inet1_users
36. http_access allow inet2_users DeniedSites
37. http_access deny !lan all
38. http_access deny all
39. coredump_dir /var/spool/squid3