I created a Proxy Server Internet------Router-------Proxy(IPFW+NAT+Squid)------LAN(30PC's)
The Proxy server : Harddisk 10G, 256 RAM, PIII, FreeBSD 5.1 Rel, squid# df -kh Filesystem Size Used Avail Capacity Mounted on /dev/ad0s1a 989M 70M 840M 8% / devfs 1.0K 1.0K 0B 100% /dev /dev/ad0s1e 989M 30M 880M 3% /tmp /dev/ad0s1f 3.8G 1.2G 2.3G 34% /usr /dev/ad0s1d 2.9G 21M 2.7G 1% /var squid# swapinfo Device 1K-blocks Used Avail Capacity Type /dev/ad0s1b 512000 56 511944 0% Interleaved my proxy server works fine..... Can any one help me to improve my squid.conf, also need help to set up the cache dir and the a mount of it cache_dir ??? cache_mem ?? cache_store_log ??? cache_access_log ???? cache_log ???? my squid location squid# pwd /usr/local/squid squid# ls -al total 18 drwxr-xr-x 9 root wheel 512 Jan 14 08:56 . drwxr-xr-x 15 root wheel 512 Jan 28 16:01 .. drwxr-xr-x 2 root wheel 512 Jan 14 08:56 bin drwxr-xr-x 3 root wheel 512 Jan 29 17:09 etc drwxr-xr-x 2 root wheel 512 Jan 14 08:56 libexec drwxr-xr-x 3 root wheel 512 Jan 14 08:56 man drwxr-xr-x 2 root wheel 512 Jan 22 15:13 sbin drwxr-xr-x 4 root wheel 512 Jan 14 08:56 share drwxr-xr-x 4 nobody wheel 512 Jan 14 11:02 var /usr/local/squid/var/cache squid# ls 00 04 08 0C swap.state 01 05 09 0D swap.state.last-clean 02 06 0A 0E 03 07 0B 0F My squid.conf ----------------########--------------- http_port 3128 visible_hostname doom.com unique_hostname doom.com acl off src "/usr/local/squid/etc/localnet" acl all src 0.0.0.0/0.0.0.0 acl localhost 127.0.0.1 #acl localnet src 10.5.3.0/255.255.255.0 acl file urlpath_regex -i \.mp3$ \.avi$ \.exe$ \.rm$ \.wam$ http_access allow localhost httpd_accel_host virtual httpd_accel_port 80 httpd_accel_with_proxy on httpd_accel_uses_host_header on acl QUERY urlpath_regex cgi-bin \? ############Access_Limit_Connection######## acl losers src 10.5.3.0/24 acl 9CONN maxconn 9 http_access deny 9CONN losers ###########PORN########## acl porn url_regex "/usr/local/squid/etc/porn" acl noporn url_regex "/usr/local/squid/etc/noporn" http_access allow noporn all deny_info ERR_NO_PORNO porn http_access deny porn all ##########MSN############## acl instant url_regex "/usr/local/squid/etc/instant" #http_access allow noporn all #deny_info ERR_NO_PORNO porn http_access deny instant all #####ALLOW_LIST####### #http_access allow all #http_access allow localnet http_access deny file http_access allow off http_access deny all icp_access allow off icp_access deny all acl Safe_ports port 80 21 443 563 70 210 1025-65535 http_access deny !Safe_ports acl CONNECT method CONNECT no_cache deny QUERY cache_mem 8 MB
