This repository was archived by the owner on Feb 28, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsquid.template.conf
More file actions
47 lines (39 loc) · 1.34 KB
/
squid.template.conf
File metadata and controls
47 lines (39 loc) · 1.34 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
#
# Recommended minimum configuration:
#
pid_filename ${PROXY_PIDFILE}
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
acl localnet src 127.0.0.1/0
# Allow all users on your network to use the proxy
# acl localnet src 192.168.0.0/24
http_port ${PROXY_PORT}
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow all
# Leave coredumps in the first cache dir
coredump_dir ${BASEDIR}/squid/cache
# disable all caching
cache deny all
cache_log /dev/null
cache_access_log daemon:${BASEDIR}/squid/logs/access.log squid
acl prx dstdomain ${REMOTE_PROXY_DOMAINS}
cache_peer ${REMOTE_PROXY_HOST} parent ${REMOTE_PROXY_PORT} 0 no-query login=${REMOTE_PROXY_USERNAME}:${REMOTE_PROXY_PASSWORD} name=vpn
http_access allow prx
cache_peer_access vpn allow prx
cache_peer_access vpn deny all
never_direct allow prx
acl noprx dstdomain ${REMOTE_PROXY_EXCLUDE}
always_direct allow noprx
visible_hostname squid.local