Enviado em 24/10/2016 - 16:20h
Olá a todos,#
# Recommended minimum configuration:
#
acl manager proto cache_object
acl localhost src 127.0.0.1/32 ::1
#acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
#acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
#acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.1.0/24 # RFC1918 possible internal network
#acl localnet src fc00::/7 # RFC 4193 local private network range
#acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
#
# Recommended minimum Access Permission configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access deny manager
# Deny requests to certain unsafe ports
http_access deny !Safe_ports
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#
# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
# Ips Liberados
acl IPsLiberados src 192.168.1.156 192.168.1.152
acl IPsSoundCloud src 192.168.1.115
acl IPsSCI src 192.168.1.99
# Dominios Bloqueados
acl negadosGeral dstdomain .baidu.com
acl netflix dstdomain .netflix.com .nflxvideo.net
acl safebrowsing dstdomain .safebrowsing.google.com .safebrowsing-cache.google.com
acl soundcloud dstdomain .soundcloud.com
acl webwhatsapp dstdomain .web.whatsapp.com
acl facebook dstdomain .facebook.com.br .facebook.com .facebook.net
acl googlevideo dstdomain .googlevideo.com
acl globovideo dstdomain .video.globo.com
acl youtube dstdomain .youtube.com .youtube.com.br
# Liberar acesso alguns PCs
http_access allow IPsLiberados
cache deny IPsSCI
always_direct allow IPsSCI
http_access deny negadosGeral
http_access deny netflix
#http_access deny safebrowsing
http_access deny soundcloud !IPsSoundCloud
http_access deny webwhatsapp
http_access deny facebook
http_access deny googlevideo
http_access deny globovideo
http_access deny youtube
http_access allow localnet
http_access allow localhost
# And finally deny all other access to this proxy
http_access deny all
# Squid normally listens to port 3128
#http_port 3128
http_port 8085
# DNS Server
dns_nameservers 8.8.8.8 8.8.4.4
dns_v4_first on
# Visible Hostname / Public
visible_hostname svProxy
strip_query_terms off
maximum_object_size 50000 KB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
logfile_rotate 5
cache_mem 2596 MB
shutdown_lifetime 3 second
# Uncomment and adjust the following to add a disk cache directory.
#cache_dir aufs /var/spool/squid 24000 16 256
cache_dir ufs /var/spool/squid 24000 16 256
# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid
# Add any of your own refresh_pattern entries above these.
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
#Arquivos ZIP e RAR | Ignorar o client refresh
refresh_pattern -i .zip$ 60 90% 1440 reload-into-ims ignore-no-cache refresh-ims
refresh_pattern -i .rar$ 60 90% 1440 reload-into-ims ignore-no-cache refresh-ims
Melhorando o tempo de boot do Fedora e outras distribuições
Como instalar as extensões Dash To Dock e Hide Top Bar no Gnome 45/46
E a guerra contra bots continua
Tradução do artigo do filósofo Gottfried Wilhelm Leibniz sobre o sistema binário
Conheça o firewall OpenGFW, uma implementação do (Great Firewall of China).
Instalando o FreeOffice no LMDE 6
Anki: Remover Tags de Estilo HTML de Todas as Cartas
Colocando uma opção de redimensionamento de imagem no menu de contexto do KDE
Não consigo acessar os modos de desempenho (1)
Criar um script para testar pen drive (5)
Problema com alias usando locate (4)
[Shell Script] Script para desinstalar pacotes desnecessários no OpenSuse
[Shell Script] Script para criar certificados de forma automatizada no OpenVpn
[Shell Script] Conversor de vídeo com opção de legenda
[C/C++] BRT - Bulk Renaming Tool
[Shell Script] Criação de Usuarios , Grupo e instalação do servidor de arquivos samba