denilsoneskas
(usa Ubuntu)
Enviado em 16/06/2016 - 14:28h
Consegui rodar o squid no default, porém quando em modo transparente o mesmo não "funciona".
Segue squid.conf.
##############################################################
# Define a porta e o modo de trabalho do squid
#http_port 3128
http_port 3128 transparent
#http_port 3128 intercept
# Define nome de exibicao
visible_hostname FW
# email adm
cache_mgr email@email.com
# Log de acesso
access_log /etc/squid/access.log squid
##############################################################
# Regras padrao
acl SSL_ports port 25 # email envio
acl SSL_ports port 110 # email recebimento
acl SSL_ports port 143 # email recebimento
acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 587 # email envio
acl SSL_ports port 873 # rsync
acl SSL_ports port 9090 # unknow
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # httpmgmt
acl Safe_ports port 488 # gsshttp
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
##############################################################
# libera skype
http_access allow CONNECT SSL_ports
http_access allow CONNECT Safe_ports
http_access allow Safe_ports
##############################################################
# Access control list compels
acl ips-diretoria src "/etc/squid/acls/ips-diretoria"
#acl ips-compras src "/etc/squid/acls/ips-compras"
#acl ips-contabil src "/etc/squid/acls/ips-contabil"
#acl ips-loja src "/etc/squid/acls/ips-loja"
#acl ips-financeiro src "/etc/squid/acls/ips-financeiro"
#acl sites-permitidos-compras url_regex -i "/etc/squid/acls/sites-permitidos-compras"
#acl sites-permitidos-contabil url_regex -i "/etc/squid/acls/sites-permitidos-contabil"
#acl sites-permitidos-loja url_regex -i "/etc/squid/acls/sites-permitidos-loja"
#acl sites-permitidos-financeiro url_regex -i "/etc/squid/acls/sites-permitidos-financeiro"
http_access allow ips-diretoria
##############################################################
# inicio cache squid
cache_store_log none
cache_mem 64 MB
maximum_object_size_in_memory 64 KB
maximum_object_size 1024 MB
minimum_object_size 64 KB
cache_swap_low 85
cache_swap_high 90
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA
cache_dir diskd /etc/squid/cache/ 10000 16 64 Q1=64 Q2=72
#Suggested default:
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgibin/|\?) 0 0% 0
refresh_pattern (Release|Package(.gz)*)$ 0 20% 2880
##############################################################
# regra negativa
http_access deny all
##############################################################