{ Berbagi, Menulis, Dan Mengajar } Ilmu…

#http_port 127.0.0.1:8080 transparent

#cache_peer files.ikc.co.id parent 8080 3130
#cache_peer files.ikc.co.id sibling 8080 3130

http_port 192.168.1.1:8080 transparent

icp_port 3130
udp_incoming_address 0.0.0.0
udp_outgoing_address 255.255.255.255
acl QUERY urlpath_regex cgi-bin \?.php
no_cache deny QUERY
cache_mem 290 MB

cache_dir ufs /home/squid/cache00 1500 64 256
cache_dir ufs /home/squid/cache01 1500 64 256

#cache_access_log /dev/null
cache_store_log none
cache_log /dev/null
access_log /var/log/squid/access.log squid

cache_replacement_policy GDSF
#Recommended minimum configuration:
dns_nameservers 192.168.1.1 203.130.196.155
#dns_nameservers 114.127.253.84 202.3.210.11

dns_nameservers 192.168.1.1

#auth_param basic program /usr/lib/squid/ncsa_auth /root/usersquid
#auth_param basic children 5
#auth_param basic realm Squid proxy-caching web server

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255

acl SAKTI-SBY src 192.168.1.0/255.255.255.0
redirect_children 5

acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 110 # pop
acl Safe_ports port 119 20 # Lain2x
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 6667-7002 # IRC ports
acl Safe_ports port 5050 # YM ports

acl CONNECT method CONNECT

acl porno1 url_regex -i “/etc/porno.txt”
#acl boleh url_regex -i “/etc/boleh.txt”

#acl porno2 url_regex -i “/etc/squid/deny_access/domains”

#acl ncsa_users proxy_auth REQUIRED
#http_access allow ncsa_users

acl filegede url_regex -i \.exe
acl filegede url_regex -i \.mp3
acl filegede url_regex -i \.mp4
acl filegede url_regex -i \.gz
acl filegede url_regex -i \.rpm
acl filegede url_regex -i \.zip
acl filegede url_regex -i \.rar
acl filegede url_regex -i \.avi
acl filegede url_regex -i \.mpeg
acl filegede url_regex -i \.mpg
acl filegede url_regex -i \.iso
acl filegede url_regex -i \.wav
acl filegede url_regex -i \.asf
acl filegede url_regex -i \.avi
acl filegede url_regex -i \.3gp
acl filegede url_regex -i \.flv
acl filegede url_regex -i \.torrent
acl filegede url_regex -i \.wmv
acl filegede url_regex -i \.bin

http_access deny porno1
#http_access deny !boleh

#http_access deny porno2

maximum_object_size 5000 KB
store_avg_object_size 50 KB

http_access allow SAKTI-SBY

http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny all
http_access deny CONNECT !SSL_ports
http_access deny to_localhost
http_access deny all
http_reply_access allow all
always_direct allow all
icp_access allow all
miss_access allow all
cache_mgr dms@polsas.ac.id
visible_hostname PROXY.SAKTI-SBY.EDU
logfile_rotate 7
forwarded_for on
maximum_single_addr_tries 3

delay_pools 2
delay_class 1 3
#delay_parameters 1 1500000/1500000 87500/87500 63500/63500
#delay_parameters 1 30500/30500 36750/36750 31500/31500
#delay_parameters 1 45500/45500 46750/46750 41500/41500
#delay_parameters 1 87500/87500 43750/43750 51500/51500
#delay_parameters 1 152500/152500 38375/38375 35750/35750
#delay_parameters 1 64250/64250 20375/20375 15750/15750
#delay_parameters 1 84250/84250 20375/20375 15750/15750
#delay_parameters 1 84250/84250 40750/40750 31500/31500
delay_parameters 1 -1/-1 -1/-1 -1/-1
#delay_access 1 allow SAKTI-SBY filegede

delay_access 1 deny all
delay_class 2 2

#delay_parameters 2 -1/-1 -1/-1
#delay_parameters 2 48000/48000 50000/50000
#delay_parameters 2 48000/48000 25000/25000
#delay_parameters 2 24000/24000 12500/12500
delay_parameters 2 148000/148000 25000/25000

delay_access 2 allow SAKTI-SBY
delay_access 2 deny all

request_header_max_size 10 KB
request_body_max_size 1 MB
reply_header_max_size 40 KB
reply_body_max_size 0 allow all