http_port 8080 transparent icp_port 3130 udp_incoming_address 0.0.0.0 udp_outgoing_address 255.255.255.255 acl QUERY urlpath_regex cgi-bin \?.php no_cache deny QUERY cache_mem 50 MB #cache_dir ufs /home/squid/cache00 750 32 128 #cache_dir ufs /home/squid/cache01 750 32 128 cache_dir ufs /var/spool/squid3 100 16 256 coredump_dir /var/spool/squid3 #--------------------------------# #acl LAN src 10.10.1.0/24 #http_access allow LAN #http_access deny all #icp_access allow LAN #icp_access deny all #acl SSL_ports port 8081 8443 8834 #acl Safe_ports port 8081 8443 8834 #http_access deny to_localhost #http_port 3128 #cache_mem 128 MB #maximum_object_size_in_memory 128 KB #cache_replacement_policy heap GDSF #cache_dir ufs /var/spool/squid3-ssd 15360 16 256 #maximum_object_size 4 MB #cache_swap_low 85 #cache_swap_high 90 #access_log /var/log/squid3/access.log squid #half_closed_clients off #cache_mgr admin@example.com #hosts_file /etc/hosts #memory_pools off #client_db off #--------------------------------# #cache_access_log /dev/null cache_store_log none cache_log /dev/null access_log /var/log/squid/access.log squid cache_replacement_policy GDSF #Recommended minimum configuration: dns_nameservers 8.8.8.8 acl all src 0.0.0.0/0.0.0.0 ::0 acl localhost src 127.0.0.1/32 ::1 #acl OFFICE src 192.168.0.0/255.255.255.0 acl OFFICE src 192.168.0.0/24 redirect_children 5 #acl to_localhost dst 127.0.0.0/8 ::1 acl SSL_ports port 443 563 acl Safe_ports port 80 # http acl Safe_ports port 110 # pop acl Safe_ports port 119 20 # Lain2x acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl Safe_ports port 6667-7002 # IRC ports acl Safe_ports port 5050 # YM ports acl CONNECT method CONNECT acl porno1 url_regex -i "/etc/porno.txt" #acl porno2 url_regex -i "/etc/squid/deny_access/domains" acl filegede url_regex -i \.exe acl filegede url_regex -i \.mp3 acl filegede url_regex -i \.mp4 acl filegede url_regex -i \.gz acl filegede url_regex -i \.rpm acl filegede url_regex -i \.zip acl filegede url_regex -i \.rar acl filegede url_regex -i \.avi acl filegede url_regex -i \.mpeg acl filegede url_regex -i \.mpg acl filegede url_regex -i \.iso acl filegede url_regex -i \.wav acl filegede url_regex -i \.asf acl filegede url_regex -i \.avi acl filegede url_regex -i \.3gp acl filegede url_regex -i \.flv acl filegede url_regex -i \.torrent acl filegede url_regex -i \.wmv acl filegede url_regex -i \.bin http_access deny porno1 #http_access deny porno2 maximum_object_size 5000 KB store_avg_object_size 50 KB http_access allow localhost http_access allow OFFICE #http_access allow makarya http_access allow manager localhost http_access deny manager http_access deny !Safe_ports http_access deny all http_access deny CONNECT !SSL_ports http_access deny to_localhost http_reply_access allow all always_direct allow all icp_access allow all #reply_body_max_size 0 allow all cache_mgr dms@ikc.co.id visible_hostname PROXY.OFFICE.INDAH logfile_rotate 7 forwarded_for on #maximum_single_addr_tries 3 request_header_max_size 10 KB #request_body_max_size 1 MB reply_header_max_size 40 KB #reply_body_max_size 0 allow alll