http_port 192.168.130.2:3128 icp_port 0 hierarchy_stoplist cgi-bin ? error_directory /usr/share/squid/errors/Russian-koi8-r acl QUERY urlpath_regex cgi-bin \? no_cache deny QUERY cache_mem 16 MB cache_swap_low 90 cache_swap_high 95 # maximum_object_size 4096 KB # minimum_object_size 0 KB # maximum_object_size_in_memory 8 KB # ipcache_size 1024 # ipcache_low 90 # ipcache_high 95 # fqdncache_size 1024 cache_replacement_policy heap GDSF memory_replacement_policy heap GDSF cache_dir diskd /var/spool/squid_c1 512 16 256 Q1=64 Q2=72 cache_dir diskd /var/spool/squid_c2 512 16 256 Q1=64 Q2=72 cache_access_log /var/log/squid/access.log cache_log /var/log/squid/cache.log cache_store_log /var/log/squid/store.log # cache_dns_program /usr/lib/squid/ # dns_children 5 # dns_retransmit_interval 5 seconds # dns_timeout 5 minutes # dns_defnames off # dns_nameservers ..... diskd_program /usr/lib/squid/diskd # unlinkd_program /usr/lib/squid/unlinkd # pinger_program /usr/lib/squid/ # authenticate_program # authenticate_children 5 # authenticate_ttl 1 hour # authenticate_ip_ttl 0 seconds # authenticate_ip_ttl_is_strict on # wais_relay_port 0 # request_header_max_size 10 KB # request_body_max_size 1 MB # reply_body_max_size 20 MB refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern . 0 20% 4320 # reference_age 1 year # quick_abort_min 16 KB # quick_abort_max 16 KB # quick_abort_pct 95 # negative_ttl 5 minutes # positive_dns_ttl 6 hours # negative_dns_ttl 5 minutes # range_offset_limit 0 KB acl all src 0.0.0.0/0.0.0.0 acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl SSL_ports port 443 563 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl Jabber_ports port 5222 5223 # Jabber ports acl CONNECT method CONNECT acl romamik_port port 2083 acl ricom src 192.168.130.0/24 acl rts_ricom src 194.247.149.208/29 acl morsov src 192.168.130.95/32 acl konarev src 192.168.130.15/32 acl chelyshev src 192.168.130.28/32 acl coolguys src "/usr/local/squid/etc/coolguys" acl bad_users src "/usr/local/squid/etc/bad_users" acl usercons maxconn 6 acl bad_sites url_regex -i "/usr/local/squid/etc/bad_sites" acl weekend time SA 00:00-23:59 http_access allow manager localhost #http_access deny manager http_access deny !Safe_ports http_access deny CONNECT !SSL_ports !Jabber_ports morsov acl internet dst 0/0 http_access deny bad_users http_access deny bad_sites !coolguys http_access deny chelyshev internet weekend http_access allow localhost morsov http_access allow internet ricom http_access allow internet rts_ricom http_access deny all icp_access allow all logfile_rotate 5 cachemgr_passwd mersedes all acl direct_sites domain "/usr/local/squid/etc/direct_sites" always_direct allow direct_sites #acl never_dir_sites url_regex -i \.macromedia\.com #never_direct allow never_dir_sites redirect_program /usr/local/rejik3/redirector /usr/local/rejik3/redirector.conf redirect_children 6 # redirect_rewrites_host_header on # redirector_access #redirector_access allow ftp_user squid@ ftp_passive on #snmp_port 3401 #acl My_SNMP snmp_community squidmrtg #snmp_access allow My_SNMP localhost #snmp_access deny all delay_pools 3 # ведро для закачек пользователей delay_class 1 2 # ведро для всех пользователей delay_class 2 1 # для негодяев delay_class 3 2 acl pooled url_regex -i "/usr/local/squid/etc/pooled" acl pooled_users src "/usr/local/squid/etc/pooled_users" # правила для второго ведра delay_access 1 allow ricom pooled !coolguys !pooled_users delay_access 1 deny all delay_parameters 1 32000/150000 2000/4000 # правила для первого ведра delay_access 2 allow ricom !coolguys !pooled_users delay_access 2 deny all delay_parameters 2 64000/64000 # правила для 3-его ведра delay_access 3 allow pooled_users delay_access 3 deny all delay_parameters 3 8000/8000 2000/4000