Created
November 14, 2020 19:14
-
-
Save guicattani/b4c3a4a363d6f3b5b510dc1dcc468900 to your computer and use it in GitHub Desktop.
squid config
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
acl localnet src 0.0.0.1-0.255.255.255 | |
acl localnet src 10.0.0.0/8 | |
acl localnet src 100.64.0.0/10 | |
acl localnet src 169.254.0.0/16 | |
acl localnet src 172.16.0.0/12 | |
acl localnet src 192.168.0.0/16 | |
acl localnet src fc00::/7 | |
acl localnet src fe80::/10 | |
acl SSL_ports port 443 | |
acl Safe_ports port 80 | |
acl Safe_ports port 21 | |
acl Safe_ports port 443 | |
acl Safe_ports port 70 | |
acl Safe_ports port 210 | |
acl Safe_ports port 1025-65535 | |
acl Safe_ports port 280 | |
acl Safe_ports port 488 | |
acl Safe_ports port 591 | |
acl Safe_ports port 777 | |
acl CONNECT method CONNECT | |
acl blockkeyword1 url_regex yahoo | |
acl blockkeyword2 url_regex gmail | |
http_access deny blockkeyword1 | |
http_access deny blockkeyword2 | |
http_access deny !Safe_ports | |
http_access deny CONNECT !SSL_ports | |
http_access allow localhost manager | |
http_access allow localnet | |
http_access deny manager | |
include /etc/squid/conf.d/* | |
http_access allow localnet | |
http_access allow localhost | |
http_access deny all | |
http_port 3128 | |
coredump_dir /var/spool/squid | |
refresh_pattern ^ftp: 1440 20% 10080 | |
refresh_pattern ^gopher: 1440 0% 1440 | |
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 | |
refresh_pattern \/(Packages|Sources)(|\.bz2|\.gz|\.xz)$ 0 0% 0 refresh-ims | |
refresh_pattern \/Release(|\.gpg)$ 0 0% 0 refresh-ims | |
refresh_pattern \/InRelease$ 0 0% 0 refresh-ims | |
refresh_pattern \/(Translation-.*)(|\.bz2|\.gz|\.xz)$ 0 0% 0 refresh-ims | |
refresh_pattern . 0 20% 4320 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment