thunder.conf
$cache_dir = "/var/www/thunder";
$disk_max = 98; // in percent
$cache_scr = "/etc/squid";
$server_ip = "192.168.3.2";
$cache_url = "http://$server_ip/thunder";
$download_speed = 512; // kbytes
$logadd_on = false;
$redir = "301:"; // keep empty if you need a internal rewriter
$proxy_host = ""; // keep it empty if you dont need proxy
$proxy_port = "5128";
// advanced params - IF YOU DONT KNOW, DONT TOUCH!
$packet_size = 5900; // in bytes
$packet_delay = 60000; // time in micro second
$download_timeout = 25;
?>
squid.conf
http_port 5128 transparent
visible_hostname digtecinternet
icp_port 0
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl con_clients dst 0.0.0.0/0
acl purge method PURGE
acl CONNECT method CONNECT
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow manager localhost con_clients
http_access deny manager all
icp_access allow purge localhost con_clients
icp_access deny purge all
#bloqueia ips negados Clientes nao pagantes
#acl ip_negado src "/etc/squid/ip_negado
#http_access deny ip_negado
#memoria reservada para o cache, 50% por cento
cache_mem 1024 MB
#máximo tamanho dos arquivo cache na memoria
maximum_object_size_in_memory 32 KB
#máximo tamanho dos arquivo cache no hd
maximum_object_size 100 MB
minimum_object_size 0
#regra que começa a esvaziar / substituir arquivos no cache em 95%
cache_swap_low 80
cache_swap_high 95
#total em MB de espaço no hd a ser usado pelo cache, numero de pastas, e
#numero de subpastas do cache.
cache_dir ufs /var/spool/squid 10000 16 256
cache_effective_user proxy
ftp_user
[email protected]
hierarchy_stoplist cgi-bin ?
#access_log /var/log/squid/access.log
#access_log /var/log/squid/error.log
#O store.log exibe quais arquivos foram removidos do cache, quais objetos estão salvos, e o tempo que estão no cache
#entretanto, não existe uma utilidade real para esses dados, portanto é recomendável desativar essa flag.
cache_store_log none
#intervalos de tempos que o proxy verificara os arquivos dos site acessado
#conferem com o do cache, o valor 10080 significa aproximadamente 09 dias
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
#refresh_pattern (Release|Package(.gz)*)$ 0 20% 2880
refresh_pattern . 0 20% 4320
#Mantendo objetos recentes e pequenos na memoria
memory_replacement_policy heap GDSF
acl shoutcast rep_header X-HTTP09-First-Line ^ICY\s[0-9]
upgrade_http0.9 deny shoutcast
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
extension_methods REPORT MERGE MKACTIVITY CHECKOUT
hosts_file /etc/hosts
coredump_dir /var/spool/squid
#acl ADSAdClient url_regex ADSAdClient31.dll
#http_access deny ADSAdClient
#deny_info
http://www.conprove.com/banner_msn.html ADSAdClient
#NEGA CACHE YOUTUBE
acl youtubecache dstdomain .youtube.com .avast.com .avg.com .windowsupdate.com .grisoft.com .avgate.net .googlevideo.com .gl$
cache deny youtubecache
server_persistent_connections off
# Marca Penalty HIT
zph_mode tos
zph_local 0x30
zph_option 136
zph_parent 0
url_rewrite_children 100
url_rewrite_program /etc/squid/loader.php
acl thundercache_allow_url url_regex -i \.youtube\.com\/get_video\?
acl thundercache_allow_url url_regex -i \.googlevideo\.com\/videoplayback \.googlevideo\.com\/videoplay \.googlevideo\.com\/get_video\?
acl thundercache_allow_url url_regex -i \.google\.com\/videoplayback \.google\.com\/videoplay \.google\.com\/get_video\?
acl thundercache_allow_url url_regex -i \.google\.[a-z][a-z]\/videoplayback \.google\.[a-z][a-z]\/videoplay \.google\.[a-z][a-z]\/get_video\?
acl thundercache_allow_url url_regex -i (25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\/videoplayback\?
acl thundercache_allow_url url_regex -i (25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\/videoplay\?
acl thundercache_allow_url url_regex -i (25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\/get_video\?
acl thundercache_allow_url url_regex -i media[a-z0-9]?[a-z0-9]?[a-z0-9]?\.tube8\.com\/
acl thundercache_allow_url url_regex -i \.mais\.uol\.com\.br\/(.*)\.flv
acl thundercache_allow_dom dstdomain .4shared.com .uol.com.br. terra.com.br dl.redtube.com .avast.com .avg.com .windowsupdate.com .grisoft.com .avgate.net .globo.com .terra.com .eset.com
acl thundercache_deny_url url_regex -i http:\/\/[a-z][a-z]\.youtube\.com http:\/\/www\.youtube\.com
url_rewrite_access allow thundercache_allow_url
url_rewrite_access allow thundercache_allow_dom
redirector_bypass on
url_rewrite_access deny all
#nega cache local para não haver duplicação
acl servercache dstdomain 192.168.3.2
cache deny servercache
Como ficaria o resolv.conf