<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<br>
-----BEGIN PGP SIGNED MESSAGE----- <br>
Hash: SHA256 <br>
<br>
Well, let's see.<br>
<br>
06.09.2016 21:12, Ahmed Alzaeem пишет:<br>
<span style="white-space: pre;">> yes i did .<br>
><br>
> here is conf file again :<br>
> #########<br>
> acl windowsupdate dstdomain windowsupdate.microsoft.com<br>
> acl windowsupdate dstdomain .update.microsoft.com<br>
> acl windowsupdate dstdomain download.windowsupdate.com<br>
> acl windowsupdate dstdomain redir.metaservices.microsoft.com<br>
> acl windowsupdate dstdomain images.metaservices.microsoft.com<br>
> acl windowsupdate dstdomain c.microsoft.com<br>
> acl windowsupdate dstdomain <a class="moz-txt-link-abbreviated" href="http://www.download.windowsupdate.com">www.download.windowsupdate.com</a><br>
> acl windowsupdate dstdomain wustat.windows.com<br>
> acl windowsupdate dstdomain crl.microsoft.com<br>
> acl windowsupdate dstdomain sls.microsoft.com<br>
> acl windowsupdate dstdomain
productactivation.one.microsoft.com<br>
> acl windowsupdate dstdomain ntservicepack.microsoft.com<br>
><br>
> acl CONNECT method CONNECT<br>
> acl wuCONNECT dstdomain <a class="moz-txt-link-abbreviated" href="http://www.update.microsoft.com">www.update.microsoft.com</a><br>
> acl wuCONNECT dstdomain sls.microsoft.com<br>
><br>
> #http_access allow CONNECT wuCONNECT localnet<br>
> #http_access allow windowsupdate localnet<br>
> #######################<br>
> # Updates: Windows<br>
> refresh_pattern -i
windowsupdate.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
43200 80% 129600 reload-into-ims<br>
> refresh_pattern -i
microsoft.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
43200 80% 129600 reload-into-ims<br>
> refresh_pattern -i
windows.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
43200 80% 129600 reload-into-ims<br>
> refresh_pattern -i
microsoft.com.akadns.net/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
43200 80% 129600 reload-into-ims<br>
> refresh_pattern -i
deploy.akamaitechnologies.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf)
43200 80% 129600 reload-into-ims<br>
> ###########<br>
<br>
> refresh_pattern -i
microsoft.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip) 4320
80% 43200 reload-into-ims<br>
> refresh_pattern -i
windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip)
4320 80% 43200 reload-into-ims<br>
> refresh_pattern -i
windows.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip) 4320
80% 43200 reload-into-ims</span><br>
Twice refresh pattern. Remove three lines above.<br>
<br>
<span style="white-space: pre;">> # DONT MODIFY THESE LINES<br>
> refresh_pattern \^ftp: 1440 20% 10080<br>
> refresh_pattern \^gopher: 1440 0% 1440<br>
> refresh_pattern -i (/cgi-bin/|\?) 0 0% 0<br>
> refresh_pattern . 0 20% 4320<br>
>
#################################################################<br>
> ###########################<br>
> #<br>
> # Recommended minimum configuration:<br>
> #<br>
><br>
> # Example rule allowing access from your local networks.<br>
> # Adapt to list your (internal) IP networks from where
browsing<br>
> # should be allowed<br>
> acl localnet src 10.0.0.0/8 # RFC1918 possible internal
network<br>
> acl localnet src 172.16.0.0/12 # RFC1918 possible internal
network<br>
> acl localnet src 192.168.0.0/16 # RFC1918 possible internal
network<br>
> acl localnet src fc00::/7 # RFC 4193 local private
network range<br>
> acl localnet src fe80::/10 # RFC 4291 link-local
(directly plugged) machines<br>
><br>
> acl SSL_ports port 443<br>
> acl Safe_ports port 80 # http<br>
> acl Safe_ports port 21 # ftp<br>
> acl Safe_ports port 443 # https<br>
> acl Safe_ports port 70 # gopher<br>
> acl Safe_ports port 210 # wais<br>
> acl Safe_ports port 1025-65535 # unregistered ports<br>
> acl Safe_ports port 280 # http-mgmt<br>
> acl Safe_ports port 488 # gss-http<br>
> acl Safe_ports port 591 # filemaker<br>
> acl Safe_ports port 777 # multiling http<br>
> acl CONNECT method CONNECT<br>
><br>
> #<br>
> # Recommended minimum Access Permission configuration:<br>
> #<br>
> # Deny requests to certain unsafe ports<br>
> http_access allow CONNECT wuCONNECT localnet<br>
> http_access allow windowsupdate localnet<br>
> http_access deny !Safe_ports<br>
><br>
> # Deny CONNECT to other than secure SSL ports<br>
> http_access deny CONNECT !SSL_ports<br>
><br>
> # Only allow cachemgr access from localhost<br>
> http_access allow localhost manager<br>
> http_access deny manager<br>
><br>
> # We strongly recommend the following be uncommented to
protect innocent<br>
> # web applications running on the proxy server who think the
only<br>
> # one who can access services on "localhost" is a local user<br>
> #http_access deny to_localhost<br>
><br>
> #<br>
> # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR
CLIENTS<br>
> #<br>
><br>
> # Example rule allowing access from your local networks.<br>
> # Adapt localnet in the ACL section to list your (internal)
IP networks<br>
> # from where browsing should be allowed<br>
> http_access allow localnet<br>
> http_access allow localhost<br>
><br>
> # And finally deny all other access to this proxy<br>
> http_access deny all<br>
><br>
> # Squid normally listens to port 3128<br>
> http_port 192.168.0.1:3128<br>
><br>
> # Uncomment and adjust the following to add a disk cache
directory.<br>
> cache_dir ufs /var/cache/squid 100 16 256</span><br>
You specify only 100 megabytes sized cache_dir. Where do you think
should be cached updates? For them, just not enough space.<br>
<span style="white-space: pre;">><br>
> # Leave coredumps in the first cache dir<br>
> coredump_dir /var/cache/squid<br>
><br>
> #<br>
> # Add any of your own refresh_pattern entries above these.<br>
> #<br>
> #refresh_pattern ^ftp: 1440 20% 10080<br>
> #refresh_pattern ^gopher: 1440 0% 1440<br>
> #refresh_pattern -i (/cgi-bin/|\?) 0 0% 0<br>
> #refresh_pattern . 0 20% 4320<br>
> #############<br>
> range_offset_limit 5 Gb windowsupdate<br>
> maximum_object_size 5 Gb<br>
> quick_abort_min -1<br>
> #########<br>
> http_port 3129 intercept<br>
> #####################<br>
><br>
><br>
><br>
> cheers<br>
>> On Sep 6, 2016, at 6:01 PM, Yuri Voinov
<a class="moz-txt-link-rfc2396E" href="mailto:yvoinov@gmail.com"><yvoinov@gmail.com></a> wrote:<br>
>><br>
>><br>
>
<a class="moz-txt-link-freetext" href="http://wiki.squid-cache.org/ConfigExamples/Caching/WindowsUpdates">http://wiki.squid-cache.org/ConfigExamples/Caching/WindowsUpdates</a><br>
><br>
> Did you read this?<br>
><br>
><br>
> 06.09.2016 20:59, --Ahmad-- пишет:<br>
> >>> hi squid users .<br>
> >>><br>
> >>> I’m trying to catch windows updates as cached
object<br>
> >>> im testing with windows 10 pc<br>
> >>><br>
> >>> i see all request as tcp_miss and the caching
store is not getting<br>
> increase .<br>
> >>><br>
> >>> =========<br>
> >>> 1473173748.014 3603 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173748.022 12146 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173748.057 5321 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173748.155 3684 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173748.355 4832 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173748.612 12645 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173748.650 7276 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173748.720 12654 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173748.816 5064 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173749.022 4159 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173749.048 5618 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173749.177 7817 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173749.208 3383 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173749.318 5096 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173749.395 3986 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173749.850 13837 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173750.015 914 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173750.029 1365 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>> 1473173750.420 7126 192.168.0.10 TCP_MISS/206
1049229 GET<br>
>
<a class="moz-txt-link-freetext" href="http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf">http://fg.v4.download.windowsupdate.com/d/msdownload/update/software/crup/2016/08/windows10.0-kb3176938-x64_6e080b0ebebeb8a463a297f5b14fcd03690eb1b8.psf</a><br>
> - ORIGINAL_DST/13.107.4.50 application/octet-stream<br>
> >>><br>
> >>> =======================<br>
> >>><br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~# du -sh /var/cache/squid/<br>
> >>> 17M /var/cache/squid/<br>
> >>> root@raspberrypi:~#<br>
> >>><br>
> >>> ==============<br>
> >>> here is squid config :<br>
> >>><br>
> >>> root@raspberrypi:~# cat /etc/squid/squid.conf<br>
> >>> #########<br>
> >>> acl windowsupdate dstdomain
windowsupdate.microsoft.com<br>
> >>> acl windowsupdate dstdomain
.update.microsoft.com<br>
> >>> acl windowsupdate dstdomain
download.windowsupdate.com<br>
> >>> acl windowsupdate dstdomain
redir.metaservices.microsoft.com<br>
> >>> acl windowsupdate dstdomain
images.metaservices.microsoft.com<br>
> >>> acl windowsupdate dstdomain c.microsoft.com<br>
> >>> acl windowsupdate dstdomain
<a class="moz-txt-link-abbreviated" href="http://www.download.windowsupdate.com">www.download.windowsupdate.com</a><br>
> >>> acl windowsupdate dstdomain wustat.windows.com<br>
> >>> acl windowsupdate dstdomain crl.microsoft.com<br>
> >>> acl windowsupdate dstdomain sls.microsoft.com<br>
> >>> acl windowsupdate dstdomain
productactivation.one.microsoft.com<br>
> >>> acl windowsupdate dstdomain
ntservicepack.microsoft.com<br>
> >>><br>
> >>> acl CONNECT method CONNECT<br>
> >>> acl wuCONNECT dstdomain <a class="moz-txt-link-abbreviated" href="http://www.update.microsoft.com">www.update.microsoft.com</a><br>
> >>> acl wuCONNECT dstdomain sls.microsoft.com<br>
> >>><br>
> >>> #######################<br>
> >>> refresh_pattern -i<br>
> microsoft.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip)
4320 80%<br>
> 43200 reload-into-ims<br>
> >>> refresh_pattern -i<br>
>
windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip)
4320<br>
> 80% 43200 reload-into-ims<br>
> >>> refresh_pattern -i<br>
> windows.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip)
4320 80%<br>
> 43200 reload-into-ims<br>
> >>> # DONT MODIFY THESE LINES<br>
> >>> refresh_pattern \^ftp: 1440 20%
10080<br>
> >>> refresh_pattern \^gopher: 1440 0%
1440<br>
> >>> refresh_pattern -i (/cgi-bin/|\?) 0 0%
0<br>
> >>> refresh_pattern . 0 20%
4320<br>
> >>>
#################################################################<br>
> >>> ###########################<br>
> >>> #<br>
> >>> # Recommended minimum configuration:<br>
> >>> #<br>
> >>><br>
> >>> # Example rule allowing access from your local
networks.<br>
> >>> # Adapt to list your (internal) IP networks from
where browsing<br>
> >>> # should be allowed<br>
> >>> acl localnet src 10.0.0.0/8 # RFC1918
possible internal network<br>
> >>> acl localnet src 172.16.0.0/12 # RFC1918
possible internal network<br>
> >>> acl localnet src 192.168.0.0/16 # RFC1918
possible internal network<br>
> >>> acl localnet src fc00::/7 # RFC 4193 local
private network range<br>
> >>> acl localnet src fe80::/10 # RFC 4291
link-local (directly<br>
> plugged) machines<br>
> >>><br>
> >>> acl SSL_ports port 443<br>
> >>> acl Safe_ports port 80 # http<br>
> >>> acl Safe_ports port 21 # ftp<br>
> >>> acl Safe_ports port 443 # https<br>
> >>> acl Safe_ports port 70 # gopher<br>
> >>> acl Safe_ports port 210 # wais<br>
> >>> acl Safe_ports port 1025-65535 # unregistered
ports<br>
> >>> acl Safe_ports port 280 # http-mgmt<br>
> >>> acl Safe_ports port 488 # gss-http<br>
> >>> acl Safe_ports port 591 # filemaker<br>
> >>> acl Safe_ports port 777 # multiling http<br>
> >>> acl CONNECT method CONNECT<br>
> >>><br>
> >>><br>
> >>> http_access allow CONNECT wuCONNECT localnet<br>
> >>> http_access allow windowsupdate localnet<br>
> >>> http_access deny !Safe_ports<br>
> >>><br>
> >>> # Deny CONNECT to other than secure SSL ports<br>
> >>> http_access deny CONNECT !SSL_ports<br>
> >>><br>
> >>> # Only allow cachemgr access from localhost<br>
> >>> http_access allow localhost manager<br>
> >>> http_access deny manager<br>
> >>><br>
> >>><br>
> >>> http_access allow localnet<br>
> >>> http_access allow localhost<br>
> >>><br>
> >>> # And finally deny all other access to this
proxy<br>
> >>> http_access deny all<br>
> >>><br>
> >>> # Squid normally listens to port 3128<br>
> >>> http_port 192.168.0.1:3128<br>
> >>><br>
> >>> # Uncomment and adjust the following to add a
disk cache directory.<br>
> >>> cache_dir ufs /var/cache/squid 100 16 256<br>
> >>><br>
> >>> # Leave coredumps in the first cache dir<br>
> >>> coredump_dir /var/cache/squid<br>
> >>><br>
> >>><br>
> >>> #############<br>
> >>> range_offset_limit 200 MB windowsupdate<br>
> >>> maximum_object_size 200 MB<br>
> >>> quick_abort_min -1<br>
> >>> #########<br>
> >>> http_port 3129 intercept<br>
> >>> maximum_object_size 200000 KB<br>
> >>><br>
> >>><br>
> >>><br>
> >>><br>
> >>> thank you<br>
> >>><br>
> >>> _______________________________________________<br>
> >>> squid-users mailing list<br>
> >>> <a class="moz-txt-link-abbreviated" href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a><br>
> >>>
<a class="moz-txt-link-freetext" href="http://lists.squid-cache.org/listinfo/squid-users">http://lists.squid-cache.org/listinfo/squid-users</a><br>
><br>
>><br>
>>
<0x613DEC46.asc>_______________________________________________<br>
>> squid-users mailing list<br>
>> <a class="moz-txt-link-abbreviated" href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a><br>
>> <a class="moz-txt-link-freetext" href="http://lists.squid-cache.org/listinfo/squid-users">http://lists.squid-cache.org/listinfo/squid-users</a><br>
></span><br>
<br>
-----BEGIN PGP SIGNATURE-----
<br>
Version: GnuPG v2
<br>
<br>
iQEcBAEBCAAGBQJXzt2vAAoJENNXIZxhPexGs4cH/2Yjuzr54vMfdx4XdO9nUMri
<br>
rCXzkOPFJmRCHIWcr31cxPvgMHCpmlhp5EtnmGdG5ZdEXxeWBcHLdwfMiqSYLfsI
<br>
8iNA3Lh0cAEWOf2kVPXzTI8MTSEjsxXnHmYPZrCP3A9xloBiBmhuRQbhENc3fXz4
<br>
IqvCHJHdsIHwlDyWaOyeQXydNX/keysZVRgaOjGztpboMrYMIJR/84qBYkdEaEsa
<br>
e/Zzs2vO0UFTxwEOzZz1zOFNMYeul3UO5fZa59UY2XsAkzRacRC6SKgITMuMzp4B
<br>
WtEAuTtVY7aXKoSjlJkb9Ts/iXYzB+hUz8hpU9iAZzBVpw2NeoNh1URjTh6LLUk=
<br>
=ckYb
<br>
-----END PGP SIGNATURE-----
<br>
<br>
</body>
</html>