Squid
Jump to navigation
Jump to search
- http://www2.de.squid-cache.org/
- http://wiki.squid-cache.org/ConfigExamples
- http://www.squidguard.org
- http://www.shallalist.de/
- http://blog.last.fm/2007/08/30/squid-optimization-guide
Cache neu aufbauen
squid -z bzw. squid3 -z
sample config
# Netzwerkoptionen # ------------------- http_port 3128 icp_port 0 # Cache Optionen # ------------------- hierarchy_stoplist cgi-bin ? acl QUERY urlpath_regex cgi-bin \? no_cache deny QUERY # Groesse des Cache im Arbeitsspeicher cache_mem 32 MB # Max. Groesse gecachter Dateien maximum_object_size 10000 KB # Max. Goesse gecachter Dateine im RAM maximum_object_size_in_memory 32 KB # Art der Speicherfreigabe cache_replacement_policy heap LFUDA memory_replacement_policy heap GDSF # Logfile- und Cache-Verzeichnisse # ---------------------------------- cache_dir aufs /var/spool/squid 2000 25 256 cache_access_log /var/log/squid/access.log cache_log /var/log/squid/cache.log cache_log /var/log/squid/store.log # Optionen fuer externe Programme # ---------------------------------- url_rewrite_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf url_rewrite_children 5 # ACCESS CONTROL Lists # ----------------------------------- acl all src all acl manager proto cache_object acl localhost src 127.0.0.1/32 acl to_localhost dst 127.0.0.0/8 acl localnet src 192.168.0.0/24 # RFC1918 possible internal network acl rznet src 192.168.100.0/24 acl SSL_ports port 443 # https acl Safe_ports port 80 8080 # https acl SSL_ports port 563 # snews acl SSL_ports port 873 # rsync acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl Safe_ports port 631 # cups acl Safe_ports port 873 # rsync acl Safe_ports port 901 # SWAT acl purge method PURGE acl CONNECT method CONNECT # Only allow cachemgr access from localhost http_access allow manager localhost http_access deny manager # Only allow purge requests from localhost http_access allow purge localhost http_access deny purge # Deny requests to unknown ports http_access deny !Safe_ports # Deny CONNECT to other than SSL ports http_access deny CONNECT !SSL_ports http_access allow localhost http_access allow localnet http_access allow rznet # And finally deny all other access to this proxy http_access deny all #Allow ICP queries from local networks only icp_access allow localnet icp_access deny all delay_pools 1 delay_class 1 2 localnet delay_parameters 1 65536/65536 65536/65536 delay_access 1 allow localnet
cache_dir
Squid Cache Berechnung: Alter Wert: cache_dir aufs /var/spool/squid3 20480 16 256 Dateisystem Groesse Benut Verf Ben% Eingehängt auf /dev/sda1 149G 29G 113G 21% / tmpfs 501M 0 501M 0% /lib/init/rw udev 10M 664K 9,4M 7% /dev tmpfs 501M 0 501M 0% /dev/shm Cache: 80GB Objekt: 20KB L2: 256 L1 = (((Cache / Obj) / L2) / 256) * 2 L1 = (((83886080 / 20) / 256) / 256) * 2 L1 = ((4.000.000 / 256) / 256) * 2 L1 = (15625 ) / 256) * 2 L1 = 61,03515625 * 2 L1 = 61,03515625 * 2 L1 = 128 Cache: 10GB Objekt: 30KB L2: 256 L1 = (((Cache / Obj) / L2) / 256) * 2 L1 = (((10485760 / 30) / 256) / 256) * 2 L1 = ((4.000.000 / 256) / 256) * 2 L1 = (1365 / 256) * 2 L1 = 5,3 * 2 L1 = 11 Neuer Wert: cache_dir diskd /var/spool/squid3 83886 128 256
destination classes
#
# DESTINATION CLASSES:
#
dest whitelist {
domainlist whitelist/domains
urllist whitelist/urls
}
dest whitelist_marketing {
domainlist whitelist_marketing/domains
urllist whitelist_marketing/urls
}
dest blacklist {
domainlist blacklist/domains
urllist blacklist/urls
}
dest special_whitelist {
domainlist special_whitelist/domains
urllist special_whitelist/urls
}
dest special_blacklist {
domainlist special_blacklist/domains
urllist special_blacklist/urls
}
dest whitelist_azubi {
domainlist whitelist_azubi/domains
urllist whitelist_azubi/urls
}
dest br_whitelist {
domainlist br_whitelist/domains
urllist br_whitelist/urls
}
dest local {
}
dest adv {
domainlist adv/domains
urllist adv/urls
}
dest aggressive {
domainlist aggressive/domains
urllist aggressive/urls
}
dest chat {
domainlist chat/domains
urllist chat/urls
}
dest dating {
domainlist dating/domains
urllist dating/urls
}
dest downloads {
domainlist downloads/domains
urllist downloads/urls
}
dest drugs {
domainlist drugs/domains
urllist drugs/urls
}
dest dynamic {
domainlist dynamic/domains
urllist dynamic/urls
}
dest banking {
domainlist finance/banking/domains
urllist finance/banking/urls
}
dest insurance {
domainlist finance/insurance/domains
urllist finance/insurance/urls
}
dest moneylending {
domainlist finance/moneylending/domains
urllist finance/moneylending/urls
}
dest realestate {
domainlist finance/realestate/domains
urllist finance/realestate/urls
}
dest finance {
domainlist finance/other/domains
urllist finance/other/urls
}
dest fortunetelling {
domainlist fortunetelling/domains
urllist fortunetelling/urls
}
dest forum {
domainlist forum/domains
urllist forum/urls
}
dest gamble {
domainlist gamble/domains
urllist gamble/urls
}
dest hacking {
domainlist hacking/domains
urllist hacking/urls
}
dest hofmann {
domainlist hofmann/domains
urllist hofmann/urls
}
dest cooking {
domainlist hobby/cooking/domains
urllist hobby/cooking/urls
}
dest games {
domainlist hobby/games/domains
urllist hobby/games/urls
}
dest gardening {
domainlist hobby/gardening/domains
urllist hobby/gardening/urls
}
dest pets {
domainlist hobby/pets/domains
urllist hobby/pets/urls
}
dest imagehosting {
domainlist imagehosting/domains
urllist imagehosting/urls
}
dest isp {
domainlist isp/domains
urllist isp/urls
}
dest jobsearch {
domainlist jobsearch/domains
urllist jobsearch/urls
}
dest military {
domainlist military/domains
urllist military/urls
}
dest models {
domainlist models/domains
urllist models/urls
}
dest movies {
domainlist movies/domains
urllist movies/urls
}
dest music {
domainlist music/domains
urllist music/urls
}
dest podcasts {
domainlist podcasts/domains
domainlist podcasts/urls
}
dest porn {
domainlist porn/domains
urllist porn/urls
}
dest humor {
domainlist recreation/humor/domains
urllist recreation/humor/urls
}
dest martialarts {
domainlist recreation/martialarts/domains
urllist recreation/martialarts/urls
}
dest sports {
domainlist recreation/sports/domains
urllist recreation/sports/urls
}
dest travel {
domainlist recreation/travel/domains
urllist recreation/travel/urls
}
dest wellness {
domainlist recreation/wellness/domains
urllist recreation/wellness/urls
}
dest redirector {
domainlist redirector/domains
urllist redirector/urls
}
dest remotecontrol {
domainlist remotecontrol/domains
urllist remotecontrol/urls
}
dest ringtones {
domainlist ringtones/domains
urllist ringtones/urls
}
dest sex_lingerie {
domainlist sex/lingerie/domains
urllist sex/lingerie/urls
}
dest shopping {
domainlist shopping/domains
urllist shopping/urls
}
dest socialnet {
domainlist socialnet/domains
urllist socialnet/urls
}
dest spyware {
domainlist spyware/domains
urllist spyware/urls
}
dest tracker {
domainlist tracker/domains
urllist tracker/urls
}
dest updatesites {
domainlist updatesites/domains
urllist updatesites/urls
}
dest violence {
domainlist violence/domains
urllist violence/urls
}
dest warez {
domainlist warez/domains
urllist warez/urls
}
dest weapons {
domainlist weapons/domains
urllist weapons/urls
}
dest webmail {
domainlist weapons/domains
urllist weapons/urls
}
dest webphone {
domainlist webphone/domains
urllist webphone/urls
}
dest webradio {
domainlist webradio/domains
urllist webradio/urls
}
dest webtv {
domainlist webtv/domains
urllist webtv/urls
}
misc
#----------------------------------------------------------------
# SquidGuard CONFIGURATION FILE
#----------------------------------------------------------------
# CONFIGURATION DIRECTORIES
dbhome /usr/share/squidGuard-1.2.1/db
logdir /var/log/squidGuard
# TIME RULES:
# abbrev for weekdays:
# s = sun, m = mon, t =tue, w = wed, h = thu, f = fri, a = sat
time workhours {
weekly s 09:30-12:00 13:00-19:00
weekly m 09:00-12:00 13:00-19:00
weekly t 09:00-11:00 12:00-19:00
weekly w 09:00-12:00 12:00-18:00
weekly h 09:00-13:00 13:00-18:00
weekly f 09:00-12:00 13:30-18:00
weekly a 08:20-13:00 13:30-19:00
}
# SOURCE ADDRESSES:
src privilegedsource {
iplist privilegedsource/ips
}
src bannedsource {
iplist bannedsource/ips
}
src usr_vip {
user nouser aaca76c9 AIVR7093 barr68a2 bavm5652 cacf616o cahp72ab canp521o dils59a6 eemm6965 fuhd699t gajh703v guah54bi gucn68c2 hegf5399 HEMT524L iagb7815 laah76c9 laya719q loea708p lurj673p luvl574c mabl648v macj6673 mamc7634 nael7076 oell688a pags705p pebh64c9 peza697n polc718u reba648m ronr69bk rooa62bqrugl691o saha733l sapm688v vizd68af zame71bj aupr42c8 cavn5876 copd516j cora704b fica649d gami704a gesa653m gumj6431 heaj526o moba56b8 moge578b oeah701t pash506a rapr714k risl46cc ronj738f sagr477c secm55bi toma6787 vavp622k vibv425o aoae694t gosm63c1 govf787a liah68co merf562b reec674m bamm59b1 belg6446 cavm765m dimf694h dujj734g goac6429 hevb74bf legj46ca none6278 oise7083 oonm803a sala745s sard684t sarf7039 tiga659q vacv682d vepr528c vilv7537 visl689m yusj77bh zumm604j mozf6722 vari725s sarg7921 dicc698j guoa69ae aagi7555 rong516r mecl7315 hess5492 oica68cp PEMO658Q rotb676b uuce68bg roij654f pesi653s kusa578t komm739o tiaa5418 aapr633l mocj71bq sahm6958 cepj74b6 aama734n golp754p bamj61b7 mard74ae fewj7344 casb78ad cale72cc aice7466 gizf715g aomc716q sacr732d vavi65a8 paal472j toaa789e mosl7026 aaoe565o moej6396 qucp669n ialj566l vagg681c MOGM75A3 HEQM76B5 uegl66c9 gomm7271 loac6943 gurg7829 loac76ca feme76cq pegj7665 ROGJ63BO leoc723e CAZL70A4 tesi624k iava7023 baaa7954 AUMJ59AN mepv748n BEGJ58AK vare818k mepj718b hera714h cabf72cm vaee732r fima63cu merd71ci lona727c cazj774v mufa636d OEBJ693I fitp6558 muad734g samiapu CACC738K mase786k near7159 sotl663e macr7416 aege6974 romo78b9 gare785d HABJ769P PIHR703C cuge739o meeo4577 cotj789g meam787d aabr725k EIMB784M AAMR67BT saga666r oema73cu mard75aa vaec685j SACA734D maaa5548 merv734c mepr766e samd761a tegm6926 roec6212 interplat zamj78ajgare6889 cama71c4 curm69a9 consulkf oracleco quanamco interilog togr8024 momj61ci sagr74cn sogj777g AUEG67BR samtest lovr637k rigb724f labe69ad cagr77b6 venn7456 ramr7291 SACL72AG CACX6799 HEBL69BD BULM80BI mariano.oracle cebm68cn PAGR74BR EADB78BR MOFE7858 PEMF785O GAGG77AO MAVI741M BACJ6977 LOSD732S LOFR7879 RAJR744G MEJS771T NOPC841J GUHL7638 GAPF721M TUVC806F MEBE734S satedsid rohm846l mals731r zumr80as cacd855s MALX6735 GOMP656S visitante1 visitante2 EIAR72AQ
log usr_vip
}
src usr_shopping {
user vizd68af saga666r gasa585e curm80ak peaa70c9 rors7568 cava6988 hepl767v vabf391e mafc477g cavf7083 margaret
log usr_vip
}
src usr_streaming {
user cahp72ab polc718u lisa
log usr_streaming
}
src usr_messaging {
user colm6739 meaa602o govj5946 jusm807u mece777 auma708k cagm7414 rapr714k aivr7093 milehouse
log usr_messaging
}
src usr_vopak {
user navegacionusuario sovm806h ouj77a8 boac82c7
log usr_vopak
}
src usr_blog {
user vacc623a tooj724b luco73c8 aaom6784 gogc6424 pihr703c favg654f habj769p capj719r gapf721m guhl7638 camv508m vicc741v heho6884 vehs73a7 movl636r hemf596l cara697v
log usr_blog
}
src usr_alacs {
user aaab4854 auvk734a aeal8387 aahj802l aecj761k auls6867 aebr722p aagj78co alscmexicali baha6866 besm76be bupo692i bapa77bhcuvo772j carr7848 cagj77bi caas73a5 cufl6759 cale5532 cesi81ak camy803c cafd5884 colm6739 caag726q dags792h dupg663r eimn6298 eooc7032 fima741q fima57ce guov525a gaaf47bb gaml789e gapm74be gafh749h guge76b2 gase623g gomy816q herj83c3 IAGJ7634 insys lipc799b laro825u losn84ak lils0829 macs7889 mavl7725 macr548 mang80b3 mufa723l maap7394 math753c movd802j magf719r mars77ch melj823v matn81cb MATN81CB nuco715l oebl8044 oimo734s pevj79bo pemb8346 pesl51av pahj75bo qurl7636 room72b5 roag72bp revd8286 raba612n raoo7615 rozb633h rose7812 rala5389 rorf74bm rosp7812 rolj666o surl773c saps722q sala716h sapb672r sogo817q sapu71bg sarg75cc tela7029 uive678b vimj666l visg76be vamc607n zami746m socalctest01 gacj6828 terj74ck hepr75b5 cahr786b calj435u sagc6411
log usr_alacs
}
src usr_webmail {
user momh723p bulm80bi gaci7393 aote74c8 aocr727d oivd584l temg7028 lovf751a locr6863 pehr727t lilm828v aibl69bl perj7816 jipm807m need714q duip727n tesn813c lape7337 cavf7083 mals731r
log usr_webmail
}
src lansource {
iplist lansource/lan
log lansource
}
# DESTINATION CLASSES:
dest adult_mature_content {
domainlist adult/domains
urllist adult/urls
domainlist mixed_adult/domains
domainlist sexuality/domains
urllist sexuality/urls
domainlist shalla/BL/porn/domains
urllist shalla/BL/porn/urls
domainlist shalla/BL/sex/lingerie/domains
urllist shalla/BL/sex/lingerie/urls
domainlist toulouse/blacklists/adult/domains
urllist toulouse/blacklists/adult/urls
log adult_mature_content
}
dest alternative_sexuality_lifestyles {
domainlist naturism/domains
urllist naturism/urls
domainlist sexuality/domains
urllist sexuality/urls
domainlist shalla/BL/recreation/wellness/domains
urllist shalla/BL/recreation/wellness/urls
domainlist shalla/BL/models/domains
urllist shalla/BL/models/urls
domainlist toulouse/blacklists/sexual_education/domains
urllist toulouse/blacklists/sexual_education/urls
log alternative_sexuality_lifestyles
}
dest alternative_spirituality_occult {
domainlist religion/domains
urllist religion/urls
domainlist sect/domains
domainlist shalla/BL/religion/domains
urllist shalla/BL/religion/urls
domainlist toulouse/blacklists/sect/domains
urllist toulouse/blacklists/sect/urls
log alternative_spirituality_occult
}
dest auctions {
domainlist onlineauctions/domains
urllist onlineauctions/urls
log auctions
}
dest blogs_personal_pages {
domainlist blog/domains
urllist blog/urls
domainlist socialnetworking/domains
urllist socialnetworking/urls
domainlist shalla/BL/socialnet/domains
urllist shalla/BL/socialnet/urls
domainlist toulouse/blacklists/blog/domains
urllist toulouse/blacklists/blog/urls
log blogs_personal_pages
}
dest chat_instant_messaging {
domainlist chat/domains
urllist chat/urls
domainlist instantmessaging/domains
urllist instantmessaging/urls
domainlist shalla/BL/chat/domains
urllist shalla/BL/chat/urls
domainlist toulouse/blacklists/forums/domains
urllist toulouse/blacklists/forums/urls
log chat_instant_messaging
}
dest email {
domainlist mail/domains
urllist mail/urls
domainlist webmail/domains
urllist webmail/urls
domainlist shalla/BL/webmail/domains
urllist shalla/BL/webmail/urls
domainlist toulouse/blacklists/webmail/domains
urllist toulouse/blacklists/webmail/urls
domainlist toulouse/blacklists/mail/domains
urllist toulouse/blacklists/mail/urls
log email
}
dest effects_privacy_concerns {
domainlist hacking/domains
urllist hacking/urls
domainlist warez/domains
urllist warez/urls
log effects_privacy_concerns
}
dest gambling {
domainlist gambling/domains
urllist gambling/urls
domainlist shalla/BL/gamble/domains
urllist shalla/BL/gamble/urls
domainlist toulouse/blacklists/gambling/domains
urllist toulouse/blacklists/gambling/urls
log gambling
}
dest games {
domainlist entertainment/domains
urllist entertainment/urls
domainlist games/domains
urllist games/urls
domainlist onlinegames/domains
urllist onlinegames/urls
domainlist shalla/BL/hobby/games/domains
urllist shalla/BL/hobby/games/urls
domainlist toulouse/blacklists/games/domains
urllist toulouse/blacklists/games/urls
log games
}
dest hacking {
domainlist hacking/domains
urllist hacking/urls
domainlist shalla/BL/warez/domains
urllist shalla/BL/warez/urls
domainlist toulouse/blacklists/hacking/domains
urllist toulouse/blacklists/hacking/urls
domainlist toulouse/blacklists/warez/domains
urllist toulouse/blacklists/warez/urls
log hacking
}
dest humor_jokes {
domainlist entertainment/domains
urllist entertainment/urls
domainlist shalla/BL/recreation/humor/domains
urllist shalla/BL/recreation/humor/urls
log humor_jokes
}
dest intimate_apparel_swimsuit {
domainlist clothing/domains
domainlist shalla/BL/sex/lingerie/domains
urllist shalla/BL/sex/lingerie/urls
log intimate_apparel_swimsuit
}
dest illegal_drugs {
domainlist drugs/domains
urllist drugs/urls
domainlist shalla/BL/drugs/domains
urllist shalla/BL/drugs/urls
domainlist toulouse/blacklists/drogue/domains
urllist toulouse/blacklists/drogue/urls
log illegal_drugs
}
dest nudity {
domainlist artnudes/domains
urllist artnudes/urls
domainlist shalla/BL/porn/domains
urllist shalla/BL/porn/urls
domainlist shalla/BL/sex/lingerie/domains
urllist shalla/BL/sex/lingerie/urls
log nudity
}
dest online_storage {
domainlist filehosting/domains
urllist filehosting/urls
domainlist toulouse/blacklists/filehosting/domains
urllist toulouse/blacklists/filehosting/urls
log online_storage
}
dest open_image_media_servers {
domainlist shalla/BL/imagehosting/domains
urllist shalla/BL/imagehosting/urls
domainlist shalla/BL/webtv/domains
urllist shalla/BL/webtv/urls
log open_image_media_servers
}
dest peer_to_peer {
domainlist warez/domains
urllist warez/urls
log peer_to_peer
}
dest personals_dating {
domainlist dating/domains
urllist dating/urls
domainlist shalla/BL/dating/domains
urllist shalla/BL/dating/urls
log personals_dating
}
dest phishing {
domainlist phishing/domains
urllist phishing/urls
domainlist toulouse/blacklists/phishing/domains
urllist toulouse/blacklists/phishing/urls
log phishing
}
dest pornography {
domainlist porn/domains
urllist porn/urls
domainlist shalla/BL/porn/domains
urllist shalla/BL/porn/urls
domainlist toulouse/blacklists/porn/domains
urllist toulouse/blacklists/porn/urls
log pornography
}
dest proxy_avoidance {
domainlist proxy/domains
urllist proxy/urls
domainlist shalla/BL/redirector/domains
urllist shalla/BL/redirector/urls
domainlist toulouse/blacklists/redirector/domains
urllist toulouse/blacklists/redirector/urls
domainlist toulouse/blacklists/strict_redirector/domains
urllist toulouse/blacklists/strict_redirector/urls
domainlist toulouse/blacklists/strong_redirector/domains
urllist toulouse/blacklists/strong_redirector/urls
log proxy_avoidance
}
dest real_estate {
domainlist shalla/BL/finance/realestate/domains
urllist shalla/BL/finance/realestate/urls
domainlist shalla/BL/finance/realestate/domains
urllist shalla/BL/finance/realestate/urls
log real_estate
}
dest religion {
domainlist religion/domains
urllist religion/urls
domainlist sect/domains
domainlist shalla/BL/religion/domains
urllist shalla/BL/religion/urls
domainlist toulouse/blacklists/sect/domains
urllist toulouse/blacklists/sect/urls
log religion
}
dest sex_education {
domainlist sexuality/domains
urllist sexuality//urls
domainlist toulouse/blacklists/sexual_education/domains
urllist toulouse/blacklists/sexual_education/urls
log sex_education
}
dest sexuality_alternative_lifestyles {
domainlist naturism/domains
urllist naturism/urls
domainlist sexuality/domains
urllist sexuality/urls
domainlist shalla/BL/recreation/wellness/domains
urllist shalla/BL/recreation/wellness/urls
domainlist shalla/BL/models/domains
urllist shalla/BL/models/urls
domainlist blacklists/adult/domains
urllist blacklists/adult/urls
log sexuality_alternative_lifestyles
}
dest shopping {
domainlist ecommerce/domains
urllist ecommerce/urls
domainlist jewelry/domains
domainlist marketingware/domains
domainlist shopping/domains
domainlist shalla/BL/shopping/domains
urllist shalla/BL/shopping/urls
log shopping
}
dest spyware_malware_sources {
domainlist spyware/domains
domainlist warez/domains
urllist warez/urls
domainlist shalla/BL/spyware/domains
urllist shalla/BL/spyware/urls
domainlist shalla/BL/tracker/domains
urllist shalla/BL/tracker/urls
log spyware_malware_sources
}
dest spyware {
domainlist spyware/domains
domainlist shalla/BL/spyware/domains
urllist shalla/BL/spyware/urls
log spyware
}
dest social_networking {
domainlist socialnetworking/domains
urllist socialnetworking/urls
domainlist shalla/BL/socialnet/domains
urllist shalla/BL/socialnet/urls
domainlist toulouse/blacklists/liste_bu/domains
urllist toulouse/blacklists/liste_bu/urls
domainlist toulouse/blacklists/dating/domains
urllist toulouse/blacklists/dating/urls
log social_networking
}
dest streaming_media_mp3s {
domainlist audio-video/domains
urllist audio-video/urls
urllist radio/urls
domainlist radio/domains
domainlist shalla/BL/webtv/domains
urllist shalla/BL/webtv/urls
domainlist shalla/BL/webphone/domains
urllist shalla/BL/webphone/urls
domainlist shalla/BL/webradio/domains
urllist shalla/BL/webradio/urls
domainlist shalla/BL/movies/domains
urllist shalla/BL/movies/urls
domainlist toulouse/blacklists/audio-video/domains
urllist toulouse/blacklists/audio-video/urls
log streaming_media_mp3s
}
dest suspicious {
domainlist desktopsillies/domains
urllist desktopsillies/urls
domainlist warez/domains
urllist warez/urls
domainlist shalla/BL/warez/domains
urllist shalla/BL/warez/urls
domainlist toulouse/blacklists/tricheur/domains
urllist toulouse/blacklists/tricheur/urls
log suspicious
}
dest violence_hate_racism {
domainlist aggressive/domains
urllist aggressive/urls
domainlist violence/domains
urllist violence/urls
domainlist shalla/BL/aggressive/domains
urllist shalla/BL/aggressive/urls
domainlist shalla/BL/violence/domains
urllist shalla/BL/violence/urls
domainlist toulouse/blacklists/agressif/domains
urllist toulouse/blacklists/agressif/urls
log violence_hate_racism
}
dest weapons {
domainlist guns/domains
urllist guns/urls
domainlist weapons/domains
urllist weapons/urls
domainlist shalla/BL/weapons/domains
urllist shalla/BL/weapons/urls
domainlist toulouse/blacklists/dangerous_material/domains
urllist toulouse/blacklists/dangerous_material/urls
log weapons
}
dest business_economy {
domainlist personalfinance/domains
domainlist banking/domains
urllist banking/urls
domainlist ecommerce/domains
urllist ecommerce/urls
domainlist shalla/BL/finance/banking/domains
urllist shalla/BL/finance/banking/urls
domainlist shalla/BL/finance/insurance/domains
urllist shalla/BL/finance/insurance/urls
domainlist shalla/BL/finance/moneylending/domains
urllist shalla/BL/finance/moneylending/urls
domainlist shalla/BL/finance/other/domains
urllist shalla/BL/finance/other/urls
domainlist shalla/BL/finance/realestate/domains
urllist shalla/BL/finance/realestate/urls
domainlist toulouse/blacklists/financial/domains
log business_economy
}
#dest newsgroups_forums {
#}
dest sports_recreation {
domainlist sportnews/domains
urllist sportnews/urls
domainlist sports/domains
urllist sports/urls
domainlist shalla/BL/recreation/sports/domains
urllist shalla/BL/recreation/sports/urls
log sports_recreation
}
dest travel {
domainlist vacation/domains
urllist vacation/urls
domainlist shalla/BL/recreation/travel/domains
urllist shalla/BL/recreation/travel/urls
log travel
}
#################################3
dest insys_white_list {
domainlist insys_white_list/domains
log insys_white_list
}
# ACLs
acl {
privilegedsource {
pass all
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
bannedsource {
pass none
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
usr_shopping {
pass !adult_mature_content !alternative_sexuality_lifestyles !alternative_spirituality_occult auctions !blogs_personal_pages !chat_instant_messaging !email !effects_privacy_concerns !gambling !games !hacking !humor_jokes !intimate_apparel_swimsuit !illegal_drugs !nudity !online_storage !open_image_media_servers !peer_to_peer !personals_dating !phishing !pornography !proxy_avoidance !real_estate !religion !sex_education !sexuality_alternative_lifestyles shopping !spyware_malware_sources !spyware !social_networking !streaming_media_mp3s !suspicious !violence_hate_racism !weapons all
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
usr_streaming {
pass !adult_mature_content !alternative_sexuality_lifestyles !alternative_spirituality_occult !auctions !blogs_personal_pages business_economy !chat_instant_messaging !email !effects_privacy_concerns !gambling !games !hacking !humor_jokes !intimate_apparel_swimsuit !illegal_drugs !nudity !online_storage !open_image_media_servers !peer_to_peer !personals_dating !phishing !pornography !proxy_avoidance !real_estate !religion !sex_education !sexuality_alternative_lifestyles !shopping !spyware_malware_sources !spyware social_networking streaming_media_mp3s !suspicious !violence_hate_racism !weapons all
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
usr_messaging {
pass !adult_mature_content !alternative_sexuality_lifestyles !alternative_spirituality_occult !auctions !blogs_personal_pages chat_instant_messaging !email !effects_privacy_concerns !gambling !games !hacking !humor_jokes !intimate_apparel_swimsuit !illegal_drugs !nudity !online_storage !open_image_media_servers !peer_to_peer !personals_dating !phishing !pornography !proxy_avoidance !real_estate !religion !sex_education !sexuality_alternative_lifestyles !shopping !spyware_malware_sources !spyware !social_networking !streaming_media_mp3s !suspicious !violence_hate_racism !weapons all
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
usr_vip {
pass adult_mature_content !alternative_sexuality_lifestyles !alternative_spirituality_occult auctions blogs_personal_pages !chat_instant_messaging email !effects_privacy_concerns !gambling !games !hacking !humor_jokes !intimate_apparel_swimsuit !illegal_drugs nudity !online_storage open_image_media_servers !peer_to_peer !personals_dating !phishing pornography !proxy_avoidance !real_estate !religion !sex_education !sexuality_alternative_lifestyles shopping sports_recreation !spyware_malware_sources !spyware !social_networking !streaming_media_mp3s !suspicious travel !violence_hate_racism !weapons all
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
usr_vopak {
pass !adult_mature_content !alternative_sexuality_lifestyles !alternative_spirituality_occult !auctions !blogs_personal_pages business_economy !chat_instant_messaging !email !effects_privacy_concerns !gambling !games !hacking !humor_jokes !intimate_apparel_swimsuit !illegal_drugs !nudity !online_storage !open_image_media_servers !peer_to_peer !personals_dating !phishing !pornography !proxy_avoidance !real_estate !religion !sex_education !sexuality_alternative_lifestyles !shopping !spyware_malware_sources !spyware !social_networking !streaming_media_mp3s !suspicious !violence_hate_racism !weapons all
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
usr_blog {
pass !adult_mature_content !alternative_sexuality_lifestyles !alternative_spirituality_occult !auctions blogs_personal_pages !chat_instant_messaging email !effects_privacy_concerns !gambling !games !hacking !humor_jokes !intimate_apparel_swimsuit !illegal_drugs !nudity !online_storage !open_image_media_servers !peer_to_peer !personals_dating !phishing !pornography !proxy_avoidance !real_estate !religion !sex_education !sexuality_alternative_lifestyles !shopping !spyware_malware_sources !spyware !social_networking !streaming_media_mp3s !suspicious !violence_hate_racism !weapons all
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
usr_alacs {
pass email insys_white_list none
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
usr_webmail {
pass !adult_mature_content !alternative_sexuality_lifestyles !alternative_spirituality_occult !auctions !blogs_personal_pages !chat_instant_messaging email !effects_privacy_concerns !gambling !games !hacking !humor_jokes !intimate_apparel_swimsuit !illegal_drugs !nudity !online_storage !open_image_media_servers !peer_to_peer !personals_dating !phishing !pornography !proxy_avoidance !real_estate !religion !sex_education !sexuality_alternative_lifestyles !shopping !spyware_malware_sources !spyware !social_networking !streaming_media_mp3s !suspicious !violence_hate_racism !weapons all
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
default {
pass !adult_mature_content !alternative_sexuality_lifestyles !alternative_spirituality_occult !auctions !blogs_personal_pages !chat_instant_messaging !email !effects_privacy_concerns !gambling !games !hacking !humor_jokes !intimate_apparel_swimsuit !illegal_drugs !nudity !online_storage !open_image_media_servers !peer_to_peer !personals_dating !phishing !pornography !proxy_avoidance !real_estate !religion !sex_education !sexuality_alternative_lifestyles !shopping !spyware_malware_sources !spyware !social_networking !streaming_media_mp3s !suspicious !violence_hate_racism !weapons all
redirect http://10.10.60.231/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
}