[squid-users] apache locked.

From: Andry Yudianto <[email protected]>
Date: Wed, 16 Jun 2004 20:32:20 +0700 (WIT)

Hello all, i need help with my squid.conf
i run squid on my pc act as gateway, and also run webserver on it. after i
have problem with ipchains rules for restricting my pc on network, i'm use
acl for restricting. but right now my webserver locked, can't be accessed
from outside. did i make a mistake on squid.conf ? and i also need example
acl to block some sites that contain xxx, porn,babes etc
 
here's the config,
 
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
 
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl ictnetwork src 192.168.2.2 192.168.2.3 192.168.2.4 192.168.2.5
192.168.2.29 192.168.2.30
acl amcorpc src 192.168.2.21 192.168.2.22 192.168.2.23 192.168.2.24
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
acl local dstdomain "allowedhost"
acl localip dst "allowedip"
acl ebsco dstdom_regex epnet.com
 
http_access allow manager localhost
http_access allow ictnetwork
http_access allow amcorpc local
http_access allow amcorpc localip
http_access allow amcorpc ebsco
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all
 
http_reply_access allow all
 
icp_access allow all
 
coredump_dir /var/spool/squid
 
cache_dir ufs /cache/room1 1000 16 256
cache_dir ufs /cache/room2 1000 16 256
cache_effective_user squid
cache_effective_group squid
 
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
maximum_object_size 4096 KB
 
cache_mem 24 MB
httpd_accel_single_host off
no_cache deny QUERY
quick_abort_min 16 KB
quick_abort_pct 95
ftp_user squid@mydomain.com
 
delay_pools 0
log_icp_queries off
memory_pools_limit 16 MB

best regards,

Andry Yudianto
Received on Wed Jun 16 2004 - 20:09:02 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:02 MDT