SQUID High-performance Proxy caching server

## High-performance Proxy caching server ##
## Based on Originally squid.conf ver 2.6 ##
## https://imanhermawan.wordpress.com/ ##
## Edit 1/6/08 ##

# NETWORK OPTIONS
# —————————————————————
http_port 3128 transparent
icp_port 0

hierarchy_stoplist cgi-bin ? .js .jsp localhost
acl QUERY urlpath_regex cgi-bin \? .js .jsp localhost
no_cache deny QUERY

cache_mem 6 MB
cache_swap_low 98
cache_swap_high 99

maximum_object_size 64 MB
maximum_object_size_in_memory 16 KB

ipcache_size 8192
ipcache_low 98
ipcache_high 99
fqdncache_size 8192

cache_replacement_policy heap GDSF
memory_replacement_policy heap GDSF

cache_dir aufs     /cache  9000 21  256

logformat squid  %tl %6tr %>a %Ss/%03Hs %<st %rm %ru %un %Sh/%<A %mt
access_log /var/log/squid/access.log squid
cache_log /dev/null
cache_store_log none

mime_table /usr/share/squid/mime.conf
pid_filename /var/run/squid.pid
log_fqdn off
#log_mime_hdrs off
#log_ip_on_direct off
client_netmask 255.255.255.255

ftp_passive on
ftp_sanitycheck on

unlinkd_program /usr/lib/squid/unlinkd

refresh_pattern ^ftp: 10080 95% 241920 reload-into-ims override-lastmod
refresh_pattern . 180 95% 120960 reload-into-ims override-lastmod

quick_abort_min 0 KB
quick_abort_max 0 KB
quick_abort_pct 100

negative_ttl 2 minutes
half_closed_clients off
shutdown_lifetime 10 seconds

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl internet src 192.168.0.0/24
acl server src 192.168.1.0/255.255.255.0
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 777
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl Safe_ports port 631         # cups
acl Safe_ports port 873         # rsync
acl Safe_ports port 901         # SWAT
acl CONNECT method CONNECT
#acl blacklist url_regex -i”/etc/squid/blacklist.txt”

http_access allow manager all
http_access deny manager
http_access allow localhost
http_access allow internet
http_access allow server
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny CONNECT
http_access deny all
#http_access deny blacklist
http_reply_access allow all
icp_access allow all
#header_access Via deny all

cache_mgr imanhermawan@yahoo.com
cache_effective_user squid
cache_effective_group squid
visible_hostname server

logfile_rotate 1
memory_pools off
log_icp_queries off
client_db on
query_icmp off
buffered_logs off
reload_into_ims on
header_access Accept-Encoding deny all
header_access Via deny all
nonhierarchical_direct off
prefer_direct off
pipeline_prefetch on
#ie_refresh on
vary_ignore_expire on

# DELAY POOL PARAMETERS
# ——————————————————————–

acl magic_words1 url_regex -i 192.168.0

acl magic_words2 url_regex -i ftp .exe .mp3 .mp2 .mp2v .mpa .vqf .tar.gz .tar.bz2 .gz .tgz .tar .bzip2 .gzip .iso .nrg .rpm .zip .rar .avi .mid .mpeg .mpe .mpg .3gp .mov .wmv .wav .rm .rmvb .flv .7zip .7zip .jar .ram .msi .cab .dll .pdf .doc .ppt .xls .bin .swf

delay_pools 2

delay_class 1 2

delay_parameters 1 -1/-1 -1/-1

delay_access 1 allow magic_words1

delay_class 2 2

delay_parameters 2 7000/15000 7000/12000
delay_access 2 allow magic_words2

3 thoughts on “SQUID High-performance Proxy caching server

  1. sukanda says:

    Apa file squid.confnya kita ganti dengan settingan diatas??? tutorial yang ini kurang jelas MAs….

    BTW makasih deh… nanti saya coba dulu… semoga berhasil…… Amin.

  2. Sofyan says:

    terus di client setingnya gimana
    di WinDow$ maupun di linux
    ty sebelumnya

  3. alf_otre says:

    wah..trims nih bisa dicoba di ubuntu ane…..
    btw klo bisa dijelaskan satu2 settingan squidnya kk. biar yg newbie2 ini bisa pinter seperti kk. : )

Comments are closed.