| # Do not edit manually ! |
| http_port 3128 |
| http_port 127.0.0.1:80 transparent http11 |
| icp_port 0 |
| pid_filename /var/run/squid.pid |
| cache_effective_user proxy |
| cache_effective_group proxy |
| error_directory /usr/local/etc/squid/errors/English |
| icon_directory /usr/local/etc/squid/icons |
| visible_hostname bsd |
| cache_mgr admin@localhost |
| access_log /var/squid/log/access.log |
| cache_log /var/squid/log/cache.log |
| cache_store_log none |
| shutdown_lifetime 3 seconds |
| # Allow local network(s) on interface(s) |
| acl localnet src 192.168.0.0/255.255.255.0 |
| forwarded_for off |
| via off |
| httpd_suppress_version_string on |
| uri_whitespace strip |
| dns_nameservers 192.168.0.254 |
| cache_mem 8 MB |
| maximum_object_size_in_memory 32 KB |
| memory_replacement_policy heap GDSF |
| cache_replacement_policy heap LFUDA |
| include /usr/local/etc/squid/dir.conf |
| cache_dir aufs /var/squid/cache 100 16 256 |
| minimum_object_size 0 KB |
| maximum_object_size 204800 KB |
| offline_mode off |
| cache_swap_low 98 |
| cache_swap_high 99 |
| # No redirector configured |
| # Setup some default acls |
| acl all src 0.0.0.0/0.0.0.0 |
| acl localhost src 127.0.0.1/255.255.255.255 |
| acl safeports port 21 70 80 210 280 443 488 563 591 631 777 901 3128 1025-65535 |
| acl sslports port 443 563 |
| acl manager proto cache_object |
| acl purge method PURGE |
| acl connect method CONNECT |
| #acl dynamic urlpath_regex cgi-bin \? |
| include /usr/local/etc/squid/include.conf |
| #cache deny dynamic |
| http_access allow manager localhost |
| # Allow external cache managers |
| acl ext_manager_1 src 127.0.0.1 |
| http_access allow manager ext_manager_1 |
| acl ext_manager_2 src 192.168.0.254 |
| http_access allow manager ext_manager_2 |
| http_access deny manager |
| http_access allow purge localhost |
| http_access deny purge |
| http_access deny !safeports |
| http_access deny CONNECT !sslports |
| # Always allow localhost connections |
| http_access allow localhost |
| quick_abort_min 32 KB |
| quick_abort_max 204800 KB |
| quick_abort_pct 1 |
| request_body_max_size 0 allow all |
| reply_body_max_size 0 allow all |
| delay_pools 1 |
| delay_class 1 2 |
| delay_parameters 1 76800/76800 -1/-1 |
| delay_initial_bucket_level 100 |
| # Throttle extensions matched in the url |
| acl throttle_exts urlpath_regex -i "/var/squid/acl/throttle_exts.acl" |
| delay_access 1 allow throttle_exts |
| delay_access 1 deny all |
| delay_body_max_size 32768 1 allow all |
| # Allow local network(s) on interface(s) |
| http_access allow localnet |
| # Custom options |
| debug_options ALL,1 16,0 |
| # Default block all to be sure |
| http_access deny all |
Monday, 28 April 2014
Pfsense Lusca Squid.conf
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment