Amigos , ver se esta correto esta configurações?
MIKROTIK + SQUID3 EM PARALELO
|
|
|
Script do Squid no ubuntu server |
|
# A porta padrao do squid e a 3128, ela pode ser alterada.
http_port 5128 transparent
visible_hostname UAUNET_PROVEDOR_LTDA
dns_nameservers 10.23.39.1
dns_nameservers 200.255.255.73
dns_nameservers 200.255.255.66
dns_nameservers 200.222.123.100
dns_nameservers 200.165.132.154
dns_nameservers 4.2.2.2
dns_nameservers 4.2.2.1
dns_nameservers 8.8.8.8
dns_nameservers 4.4.2.2
cache_access_log /var/log/squid3/access.log
#configuração do cache
#memoria reservada para o cache. coloque um valor de preferência 40%
#do total da sua maquina.
cache_mem 128 MB
#maximo tamanho dos arquivo cache na memoria
maximum_object_size_in_memory 64 KB
#tamanho maximo dos arquivo cache no HD
# no exemplo usaremos 200 MB que serão armazenados no HD, mais do que isso está dispensado da regra.
maximum_object_size 400 MB
minimum_object_size 0 KB
# regra que comeca esvaziar / substituir arquivos no cache em 90%
cache_swap_low 90
cache_swap_high 95
#indicacao de localizacao da pasta de arquivos cache e em sequencia valor
#total em MB de espaco no hd a ser usado pelo cache, numero de pastas , e
#numero de subpastas do cache.
#no exemplo estamos com um cache de 4GB com 64 pastas, e 512 subpastas.
cache_dir ufs /var/spool/squid3 4096 64 512
#intervalos de tempos que o proxy verificara os arquivos dos site acessado
#conferem com o do cache, o valor 4560 significa 04 dias
refresh_pattern ^ftp: 15 20% 9560
refresh_pattern ^gopher: 15 0% 9560
refresh_pattern . 15 20% 9560
#Fim do Cache
#ACL 's Gerais
#acl all src 0.0.0.0/0
#acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
#acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
#acl 's Portas
acl SSL_ports port 443 563 873
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70 #protocolo gopher antigao Safe_ports port 210 #whais
acl Safe_ports port 1024-65535 #todas as outras portas
acl Safe_ports port 280 #http-mgmt
acl Safe_ports port 488 #gss-http
acl Safe_ports port 591 #filemaker
acl Safe_ports port 777 #multi http
acl Safe_ports port 901 #acesso Swat
acl purge method PURGE
acl CONNECT method CONNECT
#HTTP - ACESSOS LOCAIS
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access allow CONNECT !SSL_PORTS
http_access allow localhost
#######PERSONALIZADAS ##########
#########REDES #####
acl redelocal src 10.23.39.2
acl Clientes src 200.192.168.0/24
acl Clientes src 10.23.2.0/30
#acl definir_acl src definir rede
#acl definir_acl src definir rede
# LIBERADOS
http_access allow redelocal
http_access allow Clientes
http_access allow all |
Script do sarg |
|
access_log /var/log/squid3/access.log
title "Relorio de acesso a internet"
font_face Tahoma,Verdana,Arial
header_color darkblue
header_bgcolor blanchedalmond
font_size 12px
background_color white
text_color #000000
text_bgcolor lavender
title_color green
temporary_dir /tmp
output_dir /var/www/sarg
resolve_ip
user_ip yes
topuser_sort_field BYTES reverse
user_sort_field BYTES reverse
exclude_users /etc/sarg/exclude_users
exclude_hosts /etc/sarg/exclude_hosts
date_format u
remove_temp_files yes
index yes
index_tree file
overwrite_report yes
records_without_userid ip
use_comma yes
topsites_num 200
topsites_sort_order CONNECT D
index_sort_order D
exclude_codes /etc/sarg/exclude_codes
report_type topusers topsites sites_users users_sites date_time denied auth_failures site_user_time_date downloads
usertab /etc/sarg/usertab
long_url yes
date_time_by bytes
charset Latin1
show_read_statistics no
topuser_fields NUM DATE_TIME USERID CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE
user_report_fields CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE
topuser_num 0
download_suffix "zip,arj,bzip,gz,ace,doc,iso,adt,bin,cab,com,dot,drv$,lha,lzh,mdb,mso,ppt,rtf,src,shs,sys,exe,dll,mp3,avi,mpg,mpeg,flv"
lastlog 30
privacy no |
|
|
|
|
|
|
|
|
|
|
|
|