Problema com squid/firewall/rede [RESOLVIDO]
1. Problema com squid/firewall/rede [RESOLVIDO]
removido
(usa Nenhuma)
Enviado em 04/04/2013 - 15:31h
Boa tarde galera, estou tendo um problema na minha rede. É o seguinte, tenho um proxy transparente na porta 3128 e estou com alguns problemas. Algumas máquinas (após instalar o skype novo) começaram a não abrir mais sites com https e o próprio skype, no caso ele abriu uma que outra vez e parou de funcionar, ai vou na máquina verificar e o acesso as paginas com https não tem nenhuma resposta. Já fiz tudo que eu sabia pra tentar resolver e não consegui ainda, se eu troco o ip da máquina ela começa funcionar novamente o https mas logo para de funcionar novamente, parece que é algum problema com o ip/firewall.. Outra coisa que resolve o problema é se eu ir nos navegadores e definir o proxy manualmente: 10.1.1.1 e porta: 8010.1.1.1/255.255.252.0 é o gateway da rede por onde todo o tráfego para a internet passa e o ip 10.1.2.50 é o que estou utilizando me minha máquina para encontrar o problema.. Definir a porta 80 não sei pq mas é um teste que fiz e acabou dando certo.. O problema é que o proxy é transparente e não tenho como ficar definindo em todas as máquinas essa configuração.
Quando estou com o proxy setado manualmente os https funcionam, segue a resposta do arquivo /var/log/squid/access.log com proxy setado manualmente:
1365099417.866 160 10.1.2.50 TCP_MISS/302 1145 GET http://mail.google.com/mail/ - DIRECT/74.125.234.118 text/html
Segue a resposta do arquivo /var/log/squid/access.log sem o proxy setado manualmente (e que dá o erro de Falha no carregamento da página, o servidor accounts.google.com demorou muito para responder)
1365099585.839 204 10.1.2.50 TCP_MISS/302 1115 GET http://mail.google.com/mail/ - DIRECT/74.125.234.21 text/html
1365099589.310 176662 10.1.2.50 TCP_MISS/200 6162 CONNECT ssl.gstatic.com:443 - DIRECT/74.125.234.239 -
1365099594.447 199061 10.1.2.50 TCP_MISS/200 79484 CONNECT accounts.google.com:443 - DIRECT/74.125.130.84 -
1365099595.325 198878 10.1.2.50 TCP_MISS/200 5335 CONNECT ssl.google-analytics.com:443 - DIRECT/74.125.234.158 -
1365099595.325 198639 10.1.2.50 TCP_MISS/200 4103 CONNECT mail.google.com:443 - DIRECT/74.125.234.117 -
1365099595.333 198984 10.1.2.50 TCP_MISS/200 10753 CONNECT accounts.youtube.com:443 - DIRECT/201.49.97.53 -
Já testei no firefox e no internet explorer e ambos apresentam o mesmo problema.
Segue logs do firewall com o proxy manualmente setado no firefox:
Apr 4 15:22:33 hrtgb-controle kernel: [169418.403003] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5658 DF PROTO=TCP SPT=50866 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:33 hrtgb-controle kernel: [169418.687575] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5662 DF PROTO=TCP SPT=50867 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:33 hrtgb-controle kernel: [169418.688533] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5666 DF PROTO=TCP SPT=50868 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.328978] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5682 DF PROTO=TCP SPT=50869 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.358894] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5686 DF PROTO=TCP SPT=50870 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.360757] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5691 DF PROTO=TCP SPT=50871 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.363898] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5695 DF PROTO=TCP SPT=50872 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.455817] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5699 DF PROTO=TCP SPT=50873 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.456986] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5704 DF PROTO=TCP SPT=50874 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.643832] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5708 DF PROTO=TCP SPT=50875 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.672988] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5713 DF PROTO=TCP SPT=50876 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.673824] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5717 DF PROTO=TCP SPT=50877 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.725996] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5720 DF PROTO=TCP SPT=50878 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:34 hrtgb-controle kernel: [169419.726661] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5724 DF PROTO=TCP SPT=50879 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:35 hrtgb-controle kernel: [169420.099839] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5739 DF PROTO=TCP SPT=50880 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:22:35 hrtgb-controle kernel: [169420.116660] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=10.1.1.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5743 DF PROTO=TCP SPT=50881 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Segue logs do firewall sem o proxy manualmente setado no firefox:
Apr 4 15:24:32 hrtgb-controle kernel: [169536.923114] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=74.125.234.22 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5811 DF PROTO=TCP SPT=50882 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:24:34 hrtgb-controle kernel: [169539.074147] Shorewall:loc_dnat:REDIRECT:IN=eth1 OUT= MAC=00:1a:3f:7c:88:12:00:40:a7:18:1a:dc:08:00 SRC=10.1.2.50 DST=74.125.140.19 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=5825 DF PROTO=TCP SPT=50885 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Apr 4 15:25:16 hrtgb-controle kernel: [169581.279863] martian source 10.1.3.255 from 10.1.2.50, on dev eth0
Segue config do squid:
# ACL EXTERNAL DEFINITION:
# NOTA: Com estas ACLs, somente terão acesso à Internet os usuários logados no domÃnio.
# acl_type para permitir acesso.
external_acl_type auth_adminUsers ttl=60 negative_ttl=60 children=10 %SRC /usr/local/bin/ola/squid/auth/auth_users_2.pl nobody /etc/squid/configs/adminUsers
external_acl_type auth_msnUsers ttl=60 negative_ttl=60 children=10 %SRC /usr/local/bin/ola/squid/auth/auth_users_2.pl nobody /etc/squid/configs/msnUsers
# acl_type para negar acesso.
external_acl_type auth_denyUsers ttl=60 negative_ttl=60 children=10 %SRC /usr/local/bin/ola/squid/auth/auth_users_2.pl root /etc/squid/configs/denyUsers
external_acl_type auth_denyTimeUsers ttl=60 negative_ttl=60 children=10 %SRC /usr/local/bin/ola/squid/auth/auth_users_2.pl root /etc/squid/configs/denyTimeUsers
# acl_type para verificar se os usuarios estao logados em mais de uma estacao.
external_acl_type auth_multiLogon ttl=60 negative_ttl=60 children=10 %SRC /usr/local/bin/ola/squid/auth/auth_multiLogon_2.pl root /etc/squid/configs/multiLogonUsers
deny_info ERR_MULTI_LOGIN multiLogon
# acl_type para autenticar usuarios logados (todos eles, basta estar logado).
external_acl_type auth_logedUsers ttl=60 negative_ttl=60 children=10 %SRC /usr/local/bin/ola/squid/auth/auth_logedUsers_2.pl
deny_info ERR_ACCESS_NOLOGIN logedUsers
# acl_type para a definição de grupos de acesso.
external_acl_type auth_users_g1 ttl=60 negative_ttl=60 children=10 %SRC /usr/local/bin/ola/squid/auth/auth_users_2.pl root /etc/squid/configs/groups/1/users
external_acl_type auth_users_g2 ttl=60 negative_ttl=60 children=10 %SRC /usr/local/bin/ola/squid/auth/auth_users_2.pl root /etc/squid/configs/groups/2/users
external_acl_type auth_users_g3 ttl=60 negative_ttl=60 children=10 %SRC /usr/local/bin/ola/squid/auth/auth_users_2.pl root /etc/squid/configs/groups/3/users
# ACL DEFINITION:
acl all src all
acl logedUsers external auth_logedUsers
acl adminUsers external auth_adminUsers
acl multiLogon external auth_multiLogon
acl users_g1 external auth_users_g1
acl users_g2 external auth_users_g2
acl users_g3 external auth_users_g3
acl address_g1 src "/etc/squid/configs/groups/1/address"
acl address_g2 src "/etc/squid/configs/groups/2/address"
acl address_g3 src "/etc/squid/configs/groups/3/address"
acl denyUsers external auth_denyUsers
acl denyTimeUsers external auth_denyTimeUsers
deny_info ERR_BAD_TIME denyTimeUsers
acl slowBand src "/etc/squid/configs/slowBand"
acl fastBand src "/etc/squid/configs/fastBand"
acl freeBand src "/etc/squid/configs/freeBand"
acl msnUsers external auth_msnUsers
acl msnIPs src "/etc/squid/configs/msnIPs"
acl myNets src "/etc/squid/configs/myNets"
acl adminIPs src "/etc/squid/configs/adminIPs"
acl acceptIPs src "/etc/squid/configs/acceptIPs"
acl denyIPs src "/etc/squid/configs/denyIPs"
acl denyTimeIPs src "/etc/squid/configs/denyTimeIPs"
deny_info ERR_BAD_TIME denyTimeIPs
acl msn1 url_regex -i gateway.dll
acl msn2 req_mime_type -i ^application/x-msn-messenger$
acl freeURLs url_regex -i ^http://[a-z].*
httpd_suppress_version_string on
acl badDomains dstdomain "/etc/squid/configs/badDomains"
deny_info ERR_ACCESS_DENIED_D badDomains
#
acl badWords url_regex -i "/etc/squid/configs/badWords"
deny_info ERR_ACCESS_DENIED_W badWords
#
acl badFiles urlpath_regex -i "/etc/squid/configs/badFiles"
deny_info ERR_ACCESS_DENIED_F badFiles
acl badDomains_g1 dstdomain "/etc/squid/configs/groups/1/badDomains"
acl badWords_g1 url_regex -i "/etc/squid/configs/groups/1/badWords"
acl badFiles_g1 urlpath_regex -i "/etc/squid/configs/groups/1/badFiles"
acl badDomains_g2 dstdomain "/etc/squid/configs/groups/2/badDomains"
acl badWords_g2 url_regex -i "/etc/squid/configs/groups/2/badWords"
acl badFiles_g2 urlpath_regex -i "/etc/squid/configs/groups/2/badFiles"
acl badDomains_g3 dstdomain "/etc/squid/configs/groups/3/badDomains"
acl badWords_g3 url_regex -i "/etc/squid/configs/groups/3/badWords"
acl badFiles_g3 urlpath_regex -i "/etc/squid/configs/groups/3/badFiles"
acl workTime1 time "/etc/squid/configs/workTime1"
acl workTime2 time "/etc/squid/configs/workTime2"
acl freeTime time "/etc/squid/configs/freeTime"
acl freeTime_g1 time "/etc/squid/configs/groups/1/freeTime"
acl freeTime_g2 time "/etc/squid/configs/groups/2/freeTime"
acl freeTime_g3 time "/etc/squid/configs/groups/3/freeTime"
acl acceptURLs url_regex "/etc/squid/configs/acceptURLs"
acl html rep_mime_type text/html
acl manager proto cache_object
acl webserver src 10.1.0.0/255.255.252.0
http_access allow manager webserver
http_access deny manager
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
#Bloquear Freedom.net
acl yourfdom dst 87.98.0.0/255.255.0.0
acl yourfdom dst 85.214.0.0/255.255.0.0
acl yourfdom dst 91.121.0.0/255.255.0.0
acl yourfdom dst 81.169.0.0/255.255.0.0
acl yourfdom dst 67.159.5.0/255.255.255.0
acl yourfdom dst 69.63.176.11/255.255.255.255
acl yourfdom dst 66.90.104.142/255.255.255.255
acl yourfdom dst 81.167.187.111/255.255.255.255
acl yourfdom dst 193.164.133.61/255.255.255.255
acl yourfdom dst 193.37.152.232/255.255.255.255
acl yfreedom url_regex your-freedom
acl yfreedom url_regex resolution.de
acl yfreedom url_regex rfc-editor.org
http_access deny yourfdom
http_access deny yfreedom
# RULES DEFINITION:
icp_access allow all
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
###
# acesso administrativo: com restrições de arquivos.
http_access allow !badFiles myNets adminIPs
http_access allow adminUsers
###
# acesso negado: restrição total.
http_access deny denyIPs
http_access deny denyUsers
###
# acesso negado: restringe multiplos logins (Windows only).
http_access deny multiLogon
###
# acesso negado: horário de trabalho.
http_access deny workTime1 denyTimeIPs
http_access deny workTime2 denyTimeIPs
http_access deny workTime1 denyTimeUsers
http_access deny workTime2 denyTimeUsers
###
# acesso negado: Global - arquivos perigosos.
http_access deny badFiles
# acesso negado: Grupo 1 - arquivos perigosos.
http_access deny badFiles_g1 address_g1
http_access deny badFiles_g1 users_g1
# acesso negado: Grupo 2 - arquivos perigosos.
http_access deny badFiles_g2 address_g2
http_access deny badFiles_g2 users_g2
# acesso negado: Grupo 3 - arquivos perigosos.
http_access deny badFiles_g3 address_g3
http_access deny badFiles_g3 users_g3
###
# acesso permitido: Global - horário livre.
http_access allow freeTime
# acesso permitido: Grupo 1 - horário livre.
http_access allow freeTime_g1 address_g1
http_access allow freeTime_g1 users_g1
# acesso permitido: Grupo 2 - horário livre.
http_access allow freeTime_g2 address_g2
http_access allow freeTime_g2 users_g2
# acesso permitido: Grupo 3 - horário livre.
http_access allow freeTime_g3 address_g3
http_access allow freeTime_g3 users_g3
###
# acesso negado: Global - domÃnios e palavras na URL.
http_access deny badDomains
http_access deny badWords
# acesso negado: Grupo 1 - domÃnios e palavras na URL.
http_access deny badDomains_g1 address_g1
http_access deny badWords_g1 address_g1
http_access deny badDomains_g1 users_g1
http_access deny badWords_g1 users_g1
# acesso negado: Grupo 2 - domÃnios e palavras na URL.
http_access deny badDomains_g2 address_g2
http_access deny badWords_g2 address_g2
http_access deny badDomains_g2 users_g2
http_access deny badWords_g2 users_g2
# acesso negado: Grupo 3 - domÃnios e palavras na URL.
http_access deny badDomains_g3 address_g3
http_access deny badWords_g3 address_g3
http_access deny badDomains_g3 users_g3
http_access deny badWords_g3 users_g3
###
# acesso permitido: determinadas URLs.
http_access allow acceptURLs myNets acceptIPs
http_access allow acceptURLs logedUsers
###
# acesso permitido: Microsoft Messenger (MSN) por IP.
http_access allow msn1 msnIPs
http_access allow msn2 msnIPs
http_access allow !freeURLs myNets msnIPs
# acesso permitido: Microsoft Messenger (MSN) por usuario.
http_access allow msn1 msnUsers
http_access allow msn2 msnUsers
http_access allow !freeURLs msnUsers
# acesso negado: Microsoft Messenger (MSN) aos demais.
http_access deny msn1
http_access deny msn2
http_access deny !freeURLs
###
# acesso permitido: com restricoes (regras gerais).
http_access allow users_g1
http_access allow users_g2
http_access allow users_g3
http_access allow myNets acceptIPs
http_access allow logedUsers
http_access allow localhost
# acesso negado a todo o resto.
http_access deny !logedUsers
http_access deny all
# DOWNLOAD SIZE CONTROL:
reply_body_max_size 1048576000 deny address_g1 !freeTime_g1
reply_body_max_size 1048576000 deny users_g1 !freeTime_g1
#
reply_body_max_size 104857600 deny address_g2 !freeTime_g2
reply_body_max_size 104857600 deny users_g2 !freeTime_g2
#
reply_body_max_size 104857600 deny address_g3 !freeTime_g3
reply_body_max_size 104857600 deny users_g3 !freeTime_g3
reply_body_max_size 1048576000 deny all !html !adminUsers !adminIPs !freeTime
# CACHE TYPE AND PORT:
http_port 3128 transparent
# OTHERS SETTINGS:
hierarchy_stoplist cgi-bin ?
cache_mem 1024 MB
maximum_object_size_in_memory 1024 KB
half_closed_clients off
logfile_rotate 7
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA
cache_swap_low 92
cache_swap_high 95
detect_broken_pconn on
pipeline_prefetch on
memory_replacement_policy heap LFUDA
cache_replacement_policy heap LFUDA
cache_dir ufs /var/spool/squid 4096 32 256
maximum_object_size 204800 KB
access_log /var/log/squid/access.log squid
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
refresh_pattern ^ftp: 15 20% 2280
refresh_pattern ^gopher: 15 0% 2280
refresh_pattern-i (/ cgi-bin / |? \)% 0 0 0
refresh_pattern . 15 20% 2280
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
extension_methods REPORT MERGE MKACTIVITY CHECKOUT
error_directory /usr/share/squid/errors/Portuguese
hosts_file /etc/hosts
forwarded_for off
coredump_dir /var/spool/squid
#dns_nameservers 10.1.1.1
#189.38.95.95 189.38.95.96 208.67.222.222 208.67.220.220
# POOLS CONFIG
delay_pools 4
delay_class 1 1
delay_parameters 1 112500/2048000
delay_access 1 allow adminIPs !freeBand
delay_access 1 deny all
delay_class 2 2
delay_parameters 2 62500/512000 6250/256000
delay_access 2 allow slowBand !freeBand
delay_access 2 deny all
delay_class 3 2
delay_parameters 3 112500/2048000 56250/512000
delay_access 3 allow fastBand !freeBand
delay_access 3 deny all
delay_class 4 2
delay_parameters 4 106250/2048000 26560/512000
delay_access 4 allow all !freeBand
#HAVP
#cache_peer 127.0.0.1 parent 8082 0 no-query no-digest no-netdb-exchange default
#cache_peer_access 127.0.0.1 allow all
#Only http traffic can be scanned
#acl Scan_HTTP proto HTTP
#never_direct allow Scan_HTTP
# END
Se vocês puderem me ajudar ficarei muito grato pois já não sei o que fazer, Obrigado e grande abraço.
Patrocínio
Site hospedado pelo provedor RedeHost.
Destaques
Artigos
Enviar mensagem ao usuário trabalhando com as opções do php.ini
Meu Fork do Plugin de Integração do CVS para o KDevelop
Compartilhando a tela do Computador no Celular via Deskreen
Como Configurar um Túnel SSH Reverso para Acessar Sua Máquina Local a Partir de uma Máquina Remota
Configuração para desligamento automatizado de Computadores em um Ambiente Comercial
Dicas
Compartilhamento de Rede com samba em modo Público/Anônimo de forma simples, rápido e fácil
Cups: Mapear/listar todas as impressoras de outro Servidor CUPS de forma rápida e fácil
Criando uma VPC na AWS via CLI
Tópicos
criar perfil tempoario no Active Directory samba4-21 (1)
Problemas na inicialização do sistema (2)
Falta pacotes de suporte ao sistema de arquivos (Gerenciador de discos... (1)
Top 10 do mês
-
Xerxes
1° lugar - 71.392 pts -
Fábio Berbert de Paula
2° lugar - 51.896 pts -
Renato Michnik de Carvalho
3° lugar - 27.323 pts -
Mauricio Ferrari
4° lugar - 15.409 pts -
Alberto Federman Neto.
5° lugar - 14.575 pts -
Daniel Lara Souza
6° lugar - 14.003 pts -
Diego Mendes Rodrigues
7° lugar - 13.574 pts -
Buckminster
8° lugar - 13.691 pts -
edps
9° lugar - 12.106 pts -
Alessandro de Oliveira Faria (A.K.A. CABELO)
10° lugar - 11.200 pts
Scripts
A maior comunidade GNU/Linux da América Latina! Artigos, dicas, tutoriais, fórum, scripts e muito mais. Ideal para quem busca auto-ajuda.
Site hospedado por:
