Sunday 7 February 2016

SCRIPT SQUID 2.7 stabled 9

##start of config
http_port 3128 transparent
icp_port 0

pid_filename /var/run/squid.pid
cache_effective_user proxy
cache_effective_group proxy
error_directory /usr/share/squid/errors/templates
icon_directory /usr/share/squid/icons
visible_hostname NAMA BISNIS ANDA
cache_mgr admin@NAMA BISNIS ANDA
access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log none
logfile_rotate 4
shutdown_lifetime 10 seconds

#SESUAIKAN DENGAN IP NETWORK LAN ANDA                
acl localnet src 192.168.1.0/24

uri_whitespace strip
dns_nameservers 192.168.11.1

cache_mem 8 MB
maximum_object_size_in_memory 128 KB
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA

#SESUAIKAN DENGAN BESARAN PARTISI CACHE ANDA
cache_dir aufs /cache1 100000 64 256
cache_dir aufs /cache2 100000 64 256
cache_dir aufs /cache3 100000 64 256
cache_dir aufs /cache4 100000 64 256
cache_dir aufs /cache5 100000 64 256

minimum_object_size 512 bytes
maximum_object_size 128000 KB
offline_mode off
cache_swap_low 98
cache_swap_high 99

# No redirector configured

# Setup some default acls
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl safeports port 21 70 80 210 280 443 488 563 591 631 777 901 81 3128 1025-65535
acl sslports port 443 563 81
acl manager proto cache_object
acl purge method PURGE
acl connect method CONNECT
acl dynamic urlpath_regex cgi-bin \?

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !safeports
http_access deny CONNECT !sslports

# Always allow localhost connections
http_access allow localhost

# Allow local network(s) on interface(s)
http_access allow localnet

# Default block all to be sure
http_access deny all
header_access X-Forwarded-For deny all
#follow_x_forwarded_for allow localnet
#follow_x_forwarded_for allow localhost
#http_gzip on
#http_gzip_types text/plain,text/html,text/xml,text/css,application/xml,application/xhtml+xml,application/rss+xml,application/javascript,application/x-javascript

http_access deny dontrewrite
http_access deny !getmethod
http_access allow store_rewrite_list_domain_CDN
http_access allow store_rewrite_list
http_access allow store_rewrite_list_domain
http_access allow store_rewrite_list_path
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !safeports
http_access deny CONNECT !sslports
http_access deny all

#THE END OF CONFIGURATION
Posted by at

No comments:

Post a Comment

SILAHKAN COMENT

Subscribe to: Post Comments (Atom)