squid上网代理
发表于 : 2006-09-06 10:21
配合前面的shorewall的端口转发,设置为透明代理。
squid.conf 重点如下,全部看附件:
# cat /etc/squid/banned.list
squid.conf 重点如下,全部看附件:
代码: 全选
acl msn url_regex -i ^http://gateway.messenger.hotmail.com
http_access allow msn
acl admin arp 00:40:05:13:C4:B2
http_access allow admin
acl banned_sites url_regex "/etc/squid/banned.list"
acl worktime time MTWHF 8:30-12:00 14:00-18:00
acl mmxfile urlpath_regex -i \.mp3$ \.avi$ \.rmvb$ \.rm$ \.wma$ \.wmv$
http_access deny worktime mmxfile
http_access deny worktime banned_sites
http_access allow localhost
acl loc1 src 192.168.1.0/24
acl loc1_conn maxconn 50
acl loc2 src 192.168.2.0/24
acl loc2_conn maxconn 30
http_access deny loc1 loc1_conn
http_access allow loc1
http_access deny loc2 src loc2_conn
http_access allow loc2
http_access allow localhost
http_access deny all
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
代码: 全选
3721.com
21cn.com
zichen.com
kshuw.com
cmfu.com
zhaobao.com
xilu.com
mop.com
peepsamurai.com
purjoy.com
people.com.cn
china-crane.com
ei66.com
yhzw.com
sina.com
chianren.com
163.net
163.com
tianya.net
tianya.cn
tom.com
sohu.com
263.com
sports.cn
aol.com
gigigaga.com