Squid.conf untuk Proxy Server

By @phadjart , At 11:49 PM , Has 0 Comment

#=======================================================================
http_port 3128 transparent
server_http11 on
icp_port 0

pid_filename /var/run/squid.pid
coredump_dir /var/spool/squid/
error_directory /usr/share/squid/errors/English/
icon_directory /usr/share/squid/icons
mime_table /usr/share/squid/mime.conf
cache_mgr phadjart@yahoo.com
visible_hostname 192.168.2.1

access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log /dev/null
coredump_dir /var/spool/squid/cache

#===========[ DIR CACHE ]==========================================

cache_mem 8 MB
maximum_object_size_in_memory 64 KB

memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA

cache_dir aufs /cache 60000 141 256

minimum_object_size 0 bytes
maximum_object_size 1024 MB

cache_swap_low 98
cache_swap_high 99

#===============[ INTERFACE ]====================================

dns_nameservers 127.0.0.1

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8

acl localhos src 192.168.1.0/28 # IP LOCAL
acl localnet src 192.168.2.0/30 # IP PROXY
acl localnet src 192.168.3.0/30 # IP ISP

acl SSL_ports port 443 563
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443 563     # https
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl Safe_ports port 631         # cups
acl Safe_ports port 873         # rsync
acl Safe_ports port 901         # SWAT

acl purge method PURGE
acl connect method CONNECT
acl apache rep_header Server ^Apache
acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
acl porn url_regex "/etc/squid/porn.txt"

http_access deny porn
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
uri_whitespace strip

http_access allow localnet
http_access allow localhos
http_access deny all

icp_access allow localnet
icp_access deny all
#=========================[ GZIP ON ]================

http_gzip on
http_gzip_types text/plain,text/html,text/xml,text/css,application/xml,application/xhtml+xml,application/rss+xml,application/javascript,application/x-javascript

#===================[ STOREURL REWRITER ]======================

include /etc/squid/2.conf

acl RW url_regex \/speedtest\/.*\.(jpg|txt|php).*
url_rewrite_access allow RW
url_rewrite_program /etc/squid/rewriter.pl
url_rewrite_children 7
url_rewrite_concurrency 10
redirector_bypass on

#======[ TOS 12 ]================================

tcp_outgoing_tos 0x30 all
zph_mode tos
zph_local 0x30
zph_parent 0
zph_option 136

#============[ TUNE UP ]==========================

#logformat squid %tl %6tr %>a %Ss/%03Hs %<st %rm %ru %un %Sh/%<A %mt

#ANONYMOS
#header_access Via deny all

emulate_httpd_log off
log_icp_queries off
debug_options ALL,1

#header_access X-Forwarded-For deny all
header_access Accept-Encoding deny all
header_replace Accept-Encoding gzip,deflate
upgrade_http0.9 deny shoutcast
broken_vary_encoding allow apache
client_persistent_connections off
server_persistent_connections on
half_closed_clients off
strip_query_terms off
offline_mode off
client_db off
n_aiops_threads 24
range_offset_limit 0 KB
quick_abort_min 0 KB
quick_abort_max 0 KB
quick_abort_pct 100
vary_ignore_expire on
reload_into_ims on
refresh_stale_hit 60 seconds
pipeline_prefetch on
read_timeout 15 minutes
client_lifetime 6 hours
negative_ttl 30 seconds
positive_dns_ttl 6 hours
negative_dns_ttl 60 seconds
pconn_timeout 15 seconds
request_timeout 60 seconds
store_avg_object_size 13 KB
ipcache_size 16384
ipcache_low 98
ipcache_high 99
ftp_list_width 32
ftp_passive on
ftp_sanitycheck on
buffered_logs off
log_fqdn off
fqdncache_size 16384
memory_pools off
forwarded_for on
logfile_rotate 3
cache_effective_user proxy
cache_effective_group proxy
max_filedesc 1024
store_dir_select_algorithm round-robin
download_fastest_client_speed on

#========================================
@phadjart
About
Squid.conf untuk Proxy Server - Written By @phadjart , Published At 11:49 PM, Categorized As Proxy . And Has 0 Comment
Bck
Cancel Reply

Info Sites

Flag Counter

Like Fans Page

Followers

Copyright ©2014 SMK Islam Sudirman 2 Ambarawa
All Rights Reserved
Published By SMK Islam Sudirman 2 Ambarawa
Powered by Blogger