fabioalipio
(usa Fedora)
Enviado em 11/07/2008 - 19:06h
sou iniciante no linux squid estou usando fedora 9
meu não consigo aplicar regras ou bloqueio tudo ou lebero tudo estou postanto meu squid config
por favor me ajudem
########### Configuração ################
http_port 3128 transparent
visible_hostname world tecnologia
#######controle de cache do proxy##########
cache_mem 512 MB
maximum_object_size_in_memory 64 mb
minimum_object_size 0 KB
maximum_object_size 254 MB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /var/spool/squid 2600 16 256
cache_access_log /var/log/squid/access.log
ftp_user Squid@
#protocolos
refresh_pattern ^ftp: 15 20% 2280
refresh_pattern ^gopher: 15 0% 2280
refresh_pattern . 15 20% 2280
###########regras########
acl all src 192.168.0.5
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl Safe_ports port 901
acl purge method PURGE
acl CONNECT method CONNECT
#
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
#####block liberados por ip#####
acl ip_liberado src "/etc/squid/regras/ip_liberado.txt"
http_access allow ip_liberado
####horario msn#######
acl all src 0.0.0.0/0
acl horario_liberado time MTWHF 12:00-13:30
acl trava_msn_orkut url_regex -i /etc/squid/regras/trava_msn_orkut.txt
http_access deny trava_msn_orkut !horario_liberado
acl dominio_msn_orkut dstdomain "/etc/squid/regras/trava_msn_orkut.txt"
header_access Accept-Encoding deny dominio_msn_orkut !horario_liberado
#bloqueios por arquivo e horário
acl vania src 192.168.0.44
acl nessa src 192.168.0.12
acl user src 192.168.0.15
acl dia time 06:00-17:10
http_access allow vania dia
acl blockedsites dstdom_regex "/etc/squid/bloqueados/block.txt"
http_access deny blockedsites
acl nomesproibidos dstdom_regex /etc/squid/nomesproibidos.txt
http_access deny nomesproibidos
#SEM INTERNET
acl sem_internet src 192.168.0.44
always_direct allow all sem_internet
#BLOQUEIO DE ARQUIVOS POR EXTENSÃO
acl video url_regex -i \.tar \.rar \.scr \.mov \.mpeg \.mp4 \.mpeg \.avi \.rmvb \.torrent \.ogg \.iso \.mp3 \.wav
http_access deny video
acl all src 0.0.0.0/0
http_access deny all
acl all src 192.168.0.0/24
http_access allow localhost