blob: f29c8ee2c82b0f37e0575dae9c8752c88a5de39d (
plain)
1 # /etc/squid/squid.conf
2 #
3 # configuration file for squid
4 # for all options see /etc/squid/squid.conf.default
5 #
6
7 # Socket address where squid will listen
8 http_port 3128
9
10 # email-address of cache manager who will receive
11 # mail if cache dies
12 cache_mgr root
13
14 # Effective user/group squid will run
15 cache_effective_user squid
16 cache_effective_group squid
17
18 # Directory where cache swap files will be stored
19 # Size 100MB, 16/256 subdirecctories
20 cache_dir ufs /var/squid 100 16 256
21
22 # Log files
23 cache_access_log /var/log/squid/access.log
24 cache_log /var/log/squid/cache.log
25 cache_store_log /var/log/squid/store.log
26
27 # Where the error-messages and icons are stored
28 icon_directory /usr/share/squid/icons
29 error_directory /usr/share/squid/errors
30
31 # Filename to write the process-id to
32 pid_filename /var/run/squid.pid
33
34 # Refresh pattern
35 refresh_pattern ^ftp: 1440 20% 10080
36 refresh_pattern ^gopher: 1440 0% 1440
37 refresh_pattern . 0 20% 4320
38
39 # Minimum access lists
40 acl all src 0.0.0.0/0.0.0.0
41 acl manager proto cache_object
42 acl localhost src 127.0.0.1/255.255.255.255
43 acl SSL_ports port 443
44 acl Safe_ports port 80 # http
45 acl Safe_ports port 21 # ftp
46 acl Safe_ports port 443 # https, snews
47 acl Safe_ports port 70 # gopher
48 acl Safe_ports port 210 # wais
49 acl Safe_ports port 1025-65535 # unregistered ports
50 acl Safe_ports port 280 # http-mgmt
51 acl Safe_ports port 488 # gss-http
52 acl Safe_ports port 591 # filemaker
53 acl Safe_ports port 777 # multiling http
54 acl CONNECT method CONNECT
55
56 # ACL for local network
57 acl local_net src 192.168.0.0/24
58
59 # Allow cachemgr access from localhost and local network
60 http_access allow manager localhost
61 http_access allow manager local_net
62 http_access deny manager
63
64 # Deny requests to unknown ports
65 http_access deny !Safe_ports
66
67 # Deny CONNECT to other than SSL ports
68 http_access deny CONNECT !SSL_ports
69
70 # Allow access from localhost and local network
71 http_access allow localhost
72 http_access allow local_net
73
74 # Deny the rest
75 http_access deny all
76
77 # End of file
|
