Re: Squid Tuning..... Help

From: David Ramahefason <[email protected]>
Date: Mon, 24 Feb 1997 11:28:19 +0100 (MET)

On Mon, 24 Feb 1997, Oskar Pearson wrote:

Sorry for giving not mutch information about my conf file:

Here's the file I'm using

http_port 8080
icp_port 3130

#mcast_groups 239.128.16.128

#tcp_incoming_address 0.0.0.0
#tcp_outgoing_address 0.0.0.0
#udp_incoming_address 0.0.0.0
#udp_outgoing_address 0.0.0.0

cache_host proxy.planete.net sibling 8080 3130
cache_host proxy.easynet.net sibling 3128 3130
cache_host ultra9.unl.edu.ar sibling 8000 3130
cache_host nirvana.sckcen.be sibling 3128 3130
cache_host proxy.mbnet.mb.ca sibling 3128 3130
cache_host spoof.bART.nl sibling 8080 3130
cache_host sky.asn.ru sibling 3128 3130
cache_host proxy.isracom.co.il sibling 3128 3130
cache_host proxy03.isracom.co.il sibling 3128 3130
cache_host proxy09.isracom.co.il sibling 3128 3130
cache_host Proxy-2.wirehub.net sibling 3128 3130
cache_host proxy1.isdnet.net sibling 80 3130

neighbor_type_domain ultra9.unl.edu.ar parent .ar
neighbor_type_domain proxy.easynet.fr parent .uk

neighbor_type_domain proxy.planete.net sibling .fr .com
neighbor_type_domain proxy.isracom.co.il sibling .il .com
neighbor_type_domain proxy03.isracom.co.il sibling .il .com
neighbor_type_domain proxy09.isracom.co.il sibling .il .com
neighbor_type_domain proxy.easynet.net sibling .uk .com
neighbor_type_domain nirvana.sckcen.be sibling .be .fr .com
neighbor_type_domain spoof.bART.nl sibling .nl .net .com
neighbor_type_domain proxy.mbnet.mb.ca sibling .ca .com
neighbor_type_domain sky.asn.ru sibling .ru .com
neighbor_type_domain Proxy-2.wirehub.net sibling .nl .net .com
neighbor_type_domain proxy1.isdnet.net sibling .fr .com

#inside_firewall topsecret.com

local_domain www.easynet.fr www.cyberia.fr

#local_ip 172.16.0.0

#firewall_ip 10.0.0.0
#firewall_ip 172.16.0.0

single_parent_bypass on

source_ping off

neighbor_timeout 2

hierarchy_stoplist cgi-bin ?
hierarchy_stoplist ?
cache_stoplist cgi-bin ?
cache_stoplist ?
cache_stoplist_pattern 'www.microsoft.com'

cache_mem 40
cache_mem_low 85
cache_mem_high 90

cache_swap 7500
cache_swap_low 80
cache_swap_high 90

maximum_object_size 5120

ipcache_size 2048
ipcache_low 90
ipcache_high 95

cache_dir /Proxy2/new
cache_dir /Proxy/new

cache_access_log /Proxy/logs/access.log
cache_log /Proxy/logs/cache.log
cache_store_log /Proxy/logs/store.log
cache_swap_log /Proxy/logs/log

emulate_httpd_log off

pid_filename /tmp/squid.pid

debug_options ALL,1
ident_lookup off

log_fqdn off

client_netmask 255.255.255.255

ftpget_program /usr/local/squid/bin/ftpget
ftpget_options -n 120 -R -W
ftp_user user@

cache_dns_program /usr/local/squid/bin/dnsserver
dns_children 10

#redirect_program /bin/false
#redirect_children 5

#wais_relay localhost 8000

#request_size 100

#refresh_pattern . 0 20% 4320
refresh_pattern/i \.mov$ 10080 90% 43200
refresh_pattern/i \.qtm$ 10080 90% 43200
refresh_pattern/i \.mid$ 10080 90% 43200
refresh_pattern/i \.wav$ 10080 90% 43200
refresh_pattern/i \.viv$ 4320 90% 43200
refresh_pattern/i \.mpg$ 4320 90% 43200
refresh_pattern/i \.gif$ 10080 90% 43200
refresh_pattern/i \.jpg$ 10080 90% 43200
refresh_pattern ^http:// 240 40% 10080
refresh_pattern ^ftp:// 240 50% 20160
refresh_pattern ^gopher:// 240 40% 10080
refresh_pattern /cgi-bin/ 0 0% 30
refresh_pattern . 240 40% 10080

reference_age 0

quick_abort 20 50 1024

negative_ttl 0
positive_dns_ttl 360
negative_dns_ttl 1

connect_timeout 120
read_timeout 60
client_lifetime 300
shutdown_lifetime 30
clean_rate -1

acl manager proto cache_object
acl casimir src 194.51.27.235/255.255.255.255
acl localhost src 127.0.0.1/255.255.255.255
acl proxy src 194.51.27.238/255.255.255.255
acl all src 0.0.0.0/0.0.0.0

acl national src 194.206.180.0/255.255.255.0
acl easynet src 194.51.27.0/255.255.255.0
acl asfr-1 src 194.206.182.0/255.255.255.0
acl uruk src 194.206.181.0/255.255.255.0
acl IC src 194.250.40.0/255.255.255.0
acl static src 194.250.41.0/255.255.255.0
acl p50c src 194.250.42.0/255.255.255.0
acl mvcd src 194.250.43.0/255.255.255.0
acl amosdec src 194.250.179.0/255.255.255.0
acl infomed src 194.250.180.0/255.255.255.0
acl Pops src 194.250.181.0/255.255.255.0
acl Pops2 src 194.250.182.0/255.255.255.0
acl CAD src 194.250.219.0/255.255.255.0
acl AWAY src 194.206.180.0/255.255.255.0
acl Virt src 194.250.218.0/255.255.255.0

acl UK src 193.131.248.163/255.255.255.255
acl AR src 168.96.132.9/255.255.255.255
acl BE src 193.190.184.8/255.255.255.255
acl CA src 130.179.16.140/255.255.255.255
acl NL src 194.158.160.11/255.255.255.255
acl RU src 158.250.100.110/255.255.255.255
acl FR src 194.2.222.5/255.255.255.255
acl IL src 192.116.80.66/255.255.255.255
acl IL2 src 192.116.101.125/255.255.255.255
acl IL3 src 192.116.101.189/255.255.255.255
acl NET src 194.165.93.197/255.255.255.255
acl NET2 src 194.149.160.65/255.255.255.255
acl NET3 src 194.149.160.129/255.255.255.255

acl SSL_ports port 443 563
acl CONNECT method CONNECT

http_access allow national
http_access allow easynet
http_access allow asfr-1
http_access allow uruk
http_access allow IC
http_access allow static
http_access allow p50c
http_access allow mvcd
http_access allow amosdec
http_access allow infomed
http_access allow Pops
http_access allow Pops2
http_access allow CAD
http_access allow AWAY
http_access allow Virt

http_access allow UK
http_access allow AR
http_access allow BE
http_access allow CA
http_access allow NL
http_access allow RU
http_access allow FR
http_access allow IL
http_access allow IL2
http_access allow IL3
http_access allow NET
http_access allow NET2
http_access allow NET3

http_access deny all

icp_access allow easynet
icp_access allow UK
icp_access allow AR
icp_access allow BE
icp_access allow CA
icp_access allow NL
icp_access allow RU
icp_access allow FR
icp_access allow IL
icp_access allow IL2
icp_access allow IL3
icp_access allow NET
icp_access allow NET2
icp_access allow NET3

icp_access deny all

miss_access allow all

cache_mgr rama@easynet.fr
cache_effective_user nobody nogroup
visible_hostname proxy.easynet.fr

cache_announce 24
announce_to sd.cache.nlanr.net:3131 /usr/local/squid/etc/squid.info

#httpd_accel real_httpd_host real_httpd_port
#httpd_accel_with_proxy off
#httpd_accel_uses_host_header off

dns_testnames ns.easynet.fr ns1.easynet.net internic.net usc.edu cs.colorado.edu mit.edu yale.edu

logfile_rotate 1
append_domain .easynet.fr

tcp_recv_bufsize 0

#ssl_proxy none
#passthrough_proxy none
#proxy_auth /dev/null

err_html_text '<CENTER><H1>Une erreur est survenue, Veuillez recommencez S.V.P</H1><br><A HREF="mailto:rama@easynet.fr">Proxymaster@easynet.fr</A><br><blink><font color="Blue">Attention ceci ne signifie pas que le site n existe pas !!! Mais que le temps n
ecessaire pour l'atteindre est trop long<br>Le proxy gardera cette URL comme indisponible pendant 5 minutes<br></font></blink></center>'

udp_hit_obj on

memory_pools on

forwarded_for on
minimum_direct_hops 5

# cachemgr_passwd secret shutdown
# cachemgr_passwd lesssssssecret info stats/objects
cachemgr_passwd none

swap_level1_dirs 20
swap_level2_dirs 256
store_avg_object_size 20
store_objects_per_bucket 50

Hope it'll help :)

Thanks

|David Ramahefason, rama@easynet.fr, Sysop, Easynet France SA|
|http://www.easynet.fr 23, rue du Renard, 75004 Paris, FRANCE|
| Think different Think BSD http://www.FreeBSD.org |
| Wrap around problems with Python http://www.python.org |
Received on Mon Feb 24 1997 - 02:48:04 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:34:31 MST