source: n4d-proxy/trunk/fuentes/install.n4d-proxy/usr/share/n4d/templates/squid/squid.conf @ 229

Last change on this file since 229 was 229, checked in by hectorgh, 4 years ago

adding project files

File size: 2.7 KB
Line 
1### BEGIN LLIUREX_CHANGES ###
2# /etc/squid3/squid.conf
3#
4######################################################
5##       Some sections of this file are             ##
6## AUTOMATICALLY GENERATED or MODIFIED by LliureX,  ##
7######################################################
8##
9#
10http_port {{ SRV_IP }}:{{ PROXY_HTTP_PORT }}
11http_port 127.0.0.1:{{ PROXY_HTTP_PORT }}
12visible_hostname {{ PROXY_HOST }}
13dns_nameservers server
14# enabling single-word hostnames resolution
15dns_defnames on
16acl SSL_ports port "/etc/squid3/lliurex/allow-SSL-ports.conf"
17acl our_networks src "/etc/squid3/lliurex/allow-src-networks.conf"
18acl allow_dst dst "/etc/squid3/lliurex/allow-dst-networks.conf"
19acl deny_dst dst "/etc/squid3/lliurex/deny-dst-networks.conf"
20acl allow_domain dstdomain "/etc/squid3/lliurex/allow-dst-domains.conf"
21acl deny_domain dstdomain "/etc/squid3/lliurex/deny-dst-domains.conf"
22acl deny_domain_expr dstdom_regex "/etc/squid3/lliurex/deny-dst-domains-expr.conf"
23
24
25acl HOSTS dst "/etc/squid3/lliurex/no_cache_networks.conf"
26no_cache deny HOSTS
27deny_info http://{{ PROXY_HOST }}/lliurex-proxy/deny allow_dst
28deny_info http://{{ PROXY_HOST }}/lliurex-proxy/deny deny_dst
29# set cache dir size in MB in 16 folders with 256 subfolders, aufs--> multithread with POSIX threads mode
30cache_dir aufs /var/spool/squid3 4000 16 256
31# set the RAM memory used by squid (recommends 1/3 of total ram memory)
32cache_mem 512 MB
33# objects bigger than this size aren't stored in cache
34maximum_object_size {{ PROXY_MAX_FILE_SIZE }} KB
35pid_filename /var/run/squid3.pid
36
37
38#acl manager proto cache_object
39acl localhost src 127.0.0.1/32
40acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
41
42acl Safe_ports port 80           # http
43acl Safe_ports port 21           # ftp
44acl Safe_ports port 443          # https
45acl Safe_ports port 70           # gopher
46acl Safe_ports port 210          # wais
47acl Safe_ports port 1025-65535   # unregistered ports
48acl Safe_ports port 280          # http-mgmt
49acl Safe_ports port 488          # gss-http
50acl Safe_ports port 591          # filemaker
51acl Safe_ports port 777          # multiling http
52acl CONNECT method CONNECT
53
54http_access deny manager
55
56http_access deny CONNECT !SSL_ports
57
58http_access allow allow_dst
59http_access deny deny_dst
60http_access deny deny_domain
61http_access deny deny_domain_expr
62http_access allow allow_domain
63http_access deny !Safe_ports
64http_access allow our_networks
65http_access allow localhost
66http_access deny all
67
68icp_access deny all
69
70hierarchy_stoplist cgi-bin ?
71
72access_log /var/log/squid3/access.log squid
73
74refresh_pattern ^ftp:           1440  20%       10080
75refresh_pattern ^gopher:        1440   0%       1440
76refresh_pattern (cgi-bin|\?)    0      0%       0
77refresh_pattern .               00    20%       4320
78
79icp_port 3130
80
81coredump_dir /var/spool/squid3
Note: See TracBrowser for help on using the repository browser.