<html>
  <head>
    <meta content="text/html; charset=utf-8" http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <br>
    -----BEGIN PGP SIGNED MESSAGE----- <br>
    Hash: SHA256 <br>
     <br>
    Well, let's see.<br>
    <br>
    06.09.2016 21:12, Ahmed Alzaeem пишет:<br>
    <span style="white-space: pre;">> yes i did .<br>
      ><br>
      > here is conf file  again :<br>
      > #########<br>
      > acl windowsupdate dstdomain windowsupdate.microsoft.com<br>
      > acl windowsupdate dstdomain .update.microsoft.com<br>
      > acl windowsupdate dstdomain download.windowsupdate.com<br>
      > acl windowsupdate dstdomain redir.metaservices.microsoft.com<br>
      > acl windowsupdate dstdomain images.metaservices.microsoft.com<br>
      > acl windowsupdate dstdomain c.microsoft.com<br>
      > acl windowsupdate dstdomain <a class="moz-txt-link-abbreviated" href="http://www.download.windowsupdate.com">www.download.windowsupdate.com</a><br>
      > acl windowsupdate dstdomain wustat.windows.com<br>
      > acl windowsupdate dstdomain crl.microsoft.com<br>
      > acl windowsupdate dstdomain sls.microsoft.com<br>
      > acl windowsupdate dstdomain
      productactivation.one.microsoft.com<br>
      > acl windowsupdate dstdomain ntservicepack.microsoft.com<br>
      ><br>
      > acl CONNECT method CONNECT<br>
      > acl wuCONNECT dstdomain <a class="moz-txt-link-abbreviated" href="http://www.update.microsoft.com">www.update.microsoft.com</a><br>
      > acl wuCONNECT dstdomain sls.microsoft.com<br>
      ><br>
      > #http_access allow CONNECT wuCONNECT localnet<br>
      > #http_access allow windowsupdate localnet<br>
      > #######################<br>
      > # Updates: Windows<br>
      > refresh_pattern -i
      windowsupdate.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
      43200 80% 129600 reload-into-ims<br>
      > refresh_pattern -i
      microsoft.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
      43200 80% 129600 reload-into-ims<br>
      > refresh_pattern -i
      windows.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
      43200 80% 129600 reload-into-ims<br>
      > refresh_pattern -i
microsoft.com.akadns.net/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
      43200 80% 129600 reload-into-ims<br>
      > refresh_pattern -i
deploy.akamaitechnologies.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
      43200 80% 129600 reload-into-ims<br>
      > ###########<br>
      <br>
      > refresh_pattern -i
      microsoft.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip) 4320
      80% 43200 reload-into-ims<br>
      > refresh_pattern -i
      windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip)
      4320 80% 43200 reload-into-ims<br>
      > refresh_pattern -i
      windows.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip) 4320
      80% 43200 reload-into-ims</span><br>
    Twice refresh pattern. Remove three lines above.<br>
    <br>
    <span style="white-space: pre;">> # DONT MODIFY THESE LINES<br>
      > refresh_pattern \^ftp:           1440    20%     10080<br>
      > refresh_pattern \^gopher:        1440    0%      1440<br>
      > refresh_pattern -i (/cgi-bin/|\?) 0     0%      0<br>
      > refresh_pattern .               0       20%     4320<br>
      >
      #################################################################<br>
      > ###########################<br>
      > #<br>
      > # Recommended minimum configuration:<br>
      > #<br>
      ><br>
      > # Example rule allowing access from your local networks.<br>
      > # Adapt to list your (internal) IP networks from where
      browsing<br>
      > # should be allowed<br>
      > acl localnet src 10.0.0.0/8     # RFC1918 possible internal
      network<br>
      > acl localnet src 172.16.0.0/12  # RFC1918 possible internal
      network<br>
      > acl localnet src 192.168.0.0/16 # RFC1918 possible internal
      network<br>
      > acl localnet src fc00::/7       # RFC 4193 local private
      network range<br>
      > acl localnet src fe80::/10      # RFC 4291 link-local
      (directly plugged) machines<br>
      ><br>
      > acl SSL_ports port 443<br>
      > acl Safe_ports port 80          # http<br>
      > acl Safe_ports port 21          # ftp<br>
      > acl Safe_ports port 443         # https<br>
      > acl Safe_ports port 70          # gopher<br>
      > acl Safe_ports port 210         # wais<br>
      > acl Safe_ports port 1025-65535  # unregistered ports<br>
      > acl Safe_ports port 280         # http-mgmt<br>
      > acl Safe_ports port 488         # gss-http<br>
      > acl Safe_ports port 591         # filemaker<br>
      > acl Safe_ports port 777         # multiling http<br>
      > acl CONNECT method CONNECT<br>
      ><br>
      > #<br>
      > # Recommended minimum Access Permission configuration:<br>
      > #<br>
      > # Deny requests to certain unsafe ports<br>
      > http_access allow CONNECT wuCONNECT localnet<br>
      > http_access allow windowsupdate localnet<br>
      > http_access deny !Safe_ports<br>
      ><br>
      > # Deny CONNECT to other than secure SSL ports<br>
      > http_access deny CONNECT !SSL_ports<br>
      ><br>
      > # Only allow cachemgr access from localhost<br>
      > http_access allow localhost manager<br>
      > http_access deny manager<br>
      ><br>
      > # We strongly recommend the following be uncommented to
      protect innocent<br>
      > # web applications running on the proxy server who think the
      only<br>
      > # one who can access services on "localhost" is a local user<br>
      > #http_access deny to_localhost<br>
      ><br>
      > #<br>
      > # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR
      CLIENTS<br>
      > #<br>
      ><br>
      > # Example rule allowing access from your local networks.<br>
      > # Adapt localnet in the ACL section to list your (internal)
      IP networks<br>
      > # from where browsing should be allowed<br>
      > http_access allow localnet<br>
      > http_access allow localhost<br>
      ><br>
      > # And finally deny all other access to this proxy<br>
      > http_access deny all<br>
      ><br>
      > # Squid normally listens to port 3128<br>
      > http_port 192.168.0.1:3128<br>
      ><br>
      > # Uncomment and adjust the following to add a disk cache
      directory.<br>
      > cache_dir ufs /var/cache/squid 100 16 256</span><br>
    You specify only 100 megabytes sized cache_dir. Where do you think
    should be cached updates? For them, just not enough space.<br>
    <span style="white-space: pre;">><br>
      > # Leave coredumps in the first cache dir<br>
      > coredump_dir /var/cache/squid<br>
      ><br>
      > #<br>
      > # Add any of your own refresh_pattern entries above these.<br>
      > #<br>
      > #refresh_pattern ^ftp:          1440    20%     10080<br>
      > #refresh_pattern ^gopher:       1440    0%      1440<br>
      > #refresh_pattern -i (/cgi-bin/|\?) 0    0%      0<br>
      > #refresh_pattern .              0       20%     4320<br>
      > #############<br>
      > range_offset_limit 5 Gb windowsupdate<br>
      > maximum_object_size 5 Gb<br>
      > quick_abort_min -1<br>
      > #########<br>
      > http_port 3129 intercept<br>
      > #####################<br>
      ><br>
      ><br>
      ><br>
      > cheers<br>
      >> On Sep 6, 2016, at 6:01 PM, Yuri Voinov
      <a class="moz-txt-link-rfc2396E" href="mailto:yvoinov@gmail.com"><yvoinov@gmail.com></a> wrote:<br>
      >><br>
      >><br>
      >
      <a class="moz-txt-link-freetext" href="http://wiki.squid-cache.org/ConfigExamples/Caching/WindowsUpdates">http://wiki.squid-cache.org/ConfigExamples/Caching/WindowsUpdates</a><br>
      ><br>
      > Did you read this?<br>
      ><br>
      ><br>
      > 06.09.2016 20:59, --Ahmad-- пишет:<br>
      > >>> hi squid users .<br>
      > >>><br>
      > >>> I’m trying to catch windows updates as cached
      object<br>
      > >>> im testing with  windows 10 pc<br>
      > >>><br>
      > >>> i see all request as tcp_miss and the caching
      store is not getting<br>
      > increase .<br>
      > >>><br>
      > >>> =========<br>
      > >>> 1473173748.014   3603 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173748.022  12146 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173748.057   5321 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173748.155   3684 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173748.355   4832 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173748.612  12645 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173748.650   7276 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173748.720  12654 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173748.816   5064 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173749.022   4159 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173749.048   5618 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173749.177   7817 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173749.208   3383 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173749.318   5096 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173749.395   3986 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173749.850  13837 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173750.015    914 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173750.029   1365 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>> 1473173750.420   7126 192.168.0.10 TCP_MISS/206
      1049229 GET<br>
      >
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
      > - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
      > >>><br>
      > >>> =======================<br>
      > >>><br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
      > >>> 17M     /var/cache/squid/<br>
      > >>> root@raspberrypi:~#<br>
      > >>><br>
      > >>> ==============<br>
      > >>> here is squid config :<br>
      > >>><br>
      > >>> root@raspberrypi:~# cat /etc/squid/squid.conf<br>
      > >>> #########<br>
      > >>> acl windowsupdate dstdomain
      windowsupdate.microsoft.com<br>
      > >>> acl windowsupdate dstdomain
      .update.microsoft.com<br>
      > >>> acl windowsupdate dstdomain
      download.windowsupdate.com<br>
      > >>> acl windowsupdate dstdomain
      redir.metaservices.microsoft.com<br>
      > >>> acl windowsupdate dstdomain
      images.metaservices.microsoft.com<br>
      > >>> acl windowsupdate dstdomain c.microsoft.com<br>
      > >>> acl windowsupdate dstdomain
      <a class="moz-txt-link-abbreviated" href="http://www.download.windowsupdate.com">www.download.windowsupdate.com</a><br>
      > >>> acl windowsupdate dstdomain wustat.windows.com<br>
      > >>> acl windowsupdate dstdomain crl.microsoft.com<br>
      > >>> acl windowsupdate dstdomain sls.microsoft.com<br>
      > >>> acl windowsupdate dstdomain
      productactivation.one.microsoft.com<br>
      > >>> acl windowsupdate dstdomain
      ntservicepack.microsoft.com<br>
      > >>><br>
      > >>> acl CONNECT method CONNECT<br>
      > >>> acl wuCONNECT dstdomain <a class="moz-txt-link-abbreviated" href="http://www.update.microsoft.com">www.update.microsoft.com</a><br>
      > >>> acl wuCONNECT dstdomain sls.microsoft.com<br>
      > >>><br>
      > >>> #######################<br>
      > >>> refresh_pattern -i<br>
      > microsoft.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip)
      4320 80%<br>
      > 43200 reload-into-ims<br>
      > >>> refresh_pattern -i<br>
      >
      windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip)
      4320<br>
      > 80% 43200 reload-into-ims<br>
      > >>> refresh_pattern -i<br>
      > windows.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip)
      4320 80%<br>
      > 43200 reload-into-ims<br>
      > >>> # DONT MODIFY THESE LINES<br>
      > >>> refresh_pattern \^ftp:           1440    20%    
      10080<br>
      > >>> refresh_pattern \^gopher:        1440    0%     
      1440<br>
      > >>> refresh_pattern -i (/cgi-bin/|\?) 0     0%     
      0<br>
      > >>> refresh_pattern .               0       20%    
      4320<br>
      > >>>
      #################################################################<br>
      > >>> ###########################<br>
      > >>> #<br>
      > >>> # Recommended minimum configuration:<br>
      > >>> #<br>
      > >>><br>
      > >>> # Example rule allowing access from your local
      networks.<br>
      > >>> # Adapt to list your (internal) IP networks from
      where browsing<br>
      > >>> # should be allowed<br>
      > >>> acl localnet src 10.0.0.0/8     # RFC1918
      possible internal network<br>
      > >>> acl localnet src 172.16.0.0/12  # RFC1918
      possible internal network<br>
      > >>> acl localnet src 192.168.0.0/16 # RFC1918
      possible internal network<br>
      > >>> acl localnet src fc00::/7       # RFC 4193 local
      private network range<br>
      > >>> acl localnet src fe80::/10      # RFC 4291
      link-local (directly<br>
      > plugged) machines<br>
      > >>><br>
      > >>> acl SSL_ports port 443<br>
      > >>> acl Safe_ports port 80          # http<br>
      > >>> acl Safe_ports port 21          # ftp<br>
      > >>> acl Safe_ports port 443         # https<br>
      > >>> acl Safe_ports port 70          # gopher<br>
      > >>> acl Safe_ports port 210         # wais<br>
      > >>> acl Safe_ports port 1025-65535  # unregistered
      ports<br>
      > >>> acl Safe_ports port 280         # http-mgmt<br>
      > >>> acl Safe_ports port 488         # gss-http<br>
      > >>> acl Safe_ports port 591         # filemaker<br>
      > >>> acl Safe_ports port 777         # multiling http<br>
      > >>> acl CONNECT method CONNECT<br>
      > >>><br>
      > >>><br>
      > >>> http_access allow CONNECT wuCONNECT localnet<br>
      > >>> http_access allow windowsupdate localnet<br>
      > >>> http_access deny !Safe_ports<br>
      > >>><br>
      > >>> # Deny CONNECT to other than secure SSL ports<br>
      > >>> http_access deny CONNECT !SSL_ports<br>
      > >>><br>
      > >>> # Only allow cachemgr access from localhost<br>
      > >>> http_access allow localhost manager<br>
      > >>> http_access deny manager<br>
      > >>><br>
      > >>><br>
      > >>> http_access allow localnet<br>
      > >>> http_access allow localhost<br>
      > >>><br>
      > >>> # And finally deny all other access to this
      proxy<br>
      > >>> http_access deny all<br>
      > >>><br>
      > >>> # Squid normally listens to port 3128<br>
      > >>> http_port 192.168.0.1:3128<br>
      > >>><br>
      > >>> # Uncomment and adjust the following to add a
      disk cache directory.<br>
      > >>> cache_dir ufs /var/cache/squid 100 16 256<br>
      > >>><br>
      > >>> # Leave coredumps in the first cache dir<br>
      > >>> coredump_dir /var/cache/squid<br>
      > >>><br>
      > >>><br>
      > >>> #############<br>
      > >>> range_offset_limit 200 MB windowsupdate<br>
      > >>> maximum_object_size 200 MB<br>
      > >>> quick_abort_min -1<br>
      > >>> #########<br>
      > >>> http_port 3129 intercept<br>
      > >>> maximum_object_size 200000 KB<br>
      > >>><br>
      > >>><br>
      > >>><br>
      > >>><br>
      > >>> thank you<br>
      > >>><br>
      > >>> _______________________________________________<br>
      > >>> squid-users mailing list<br>
      > >>> <a class="moz-txt-link-abbreviated" href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a><br>
      > >>>
      <a class="moz-txt-link-freetext" href="http://lists.squid-cache.org/listinfo/squid-users">http://lists.squid-cache.org/listinfo/squid-users</a><br>
      ><br>
      >><br>
      >>
      <0x613DEC46.asc>_______________________________________________<br>
      >> squid-users mailing list<br>
      >> <a class="moz-txt-link-abbreviated" href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a><br>
      >> <a class="moz-txt-link-freetext" href="http://lists.squid-cache.org/listinfo/squid-users">http://lists.squid-cache.org/listinfo/squid-users</a><br>
      ></span><br>
    <br>
    -----BEGIN PGP SIGNATURE-----
<br>
    Version: GnuPG v2
<br>
     <br>
    iQEcBAEBCAAGBQJXzt2vAAoJENNXIZxhPexGs4cH/2Yjuzr54vMfdx4XdO9nUMri
<br>
    rCXzkOPFJmRCHIWcr31cxPvgMHCpmlhp5EtnmGdG5ZdEXxeWBcHLdwfMiqSYLfsI
<br>
    8iNA3Lh0cAEWOf2kVPXzTI8MTSEjsxXnHmYPZrCP3A9xloBiBmhuRQbhENc3fXz4
<br>
    IqvCHJHdsIHwlDyWaOyeQXydNX/keysZVRgaOjGztpboMrYMIJR/84qBYkdEaEsa
<br>
    e/Zzs2vO0UFTxwEOzZz1zOFNMYeul3UO5fZa59UY2XsAkzRacRC6SKgITMuMzp4B
<br>
    WtEAuTtVY7aXKoSjlJkb9Ts/iXYzB+hUz8hpU9iAZzBVpw2NeoNh1URjTh6LLUk=
<br>
    =ckYb
<br>
    -----END PGP SIGNATURE-----
<br>
    <br>
  </body>
</html>