[squid-users] my squid.conf - suggestions?

maybe one of you have some suggestions for my squid.conf to optimize the
performance.

thanks to "pedro" who helped me with squid-ldap and active directory.

_snip_

ie_refresh on
cache_effective_user squid
cache_effective_group squid
cache_mem 1024 MB
maximum_object_size 8192 KB
maximum_object_size_in_memory 1024 KB
minimum_object_size 0 KB

acl manager src 127.0.0.1/255.255.255.255
acl localhost src 127.0.0.1/255.255.255.255
acl all src 0.0.0.0/0.0.0.0

cachemgr_passwd squidmgr

http_access allow manager localhost
http_port 8080
cache_mgr user@domain.com
# RECOMPILE SQUID!! pinger_program /usr/local/squid/libexec/pinger

auth_param basic program /usr/local/squid/libexec/squid_ldap_auth -b
"dc=some,dc=dc,dc=net" -h somedc -D
"cn=ldap,cn=Users,dc=some,dc=dc,dc=net" -w "ldappw" -f
"(&(sAMAccountName=%s)(objectClass=Person))"
auth_param basic children 5
auth_param basic realm Proxy Auth
auth_param basic credentialsttl 2 hours

external_acl_type ldap_group %LOGIN
/usr/local/squid/libexec/squid_ldap_group -h somedc -b
"dc=some,dc=dc,dc=net" -f "(&(cn=%g)(member=%u))" -F "sAMAccountName=%s"
-D "cn=ldap,cn=Users,dc=some,dc=dc,dc=net" -w "ldap" -d 1

authenticsomee_ttl 25 second

acl ulocal proxy_auth REQUIRED
acl uldap external ldap_group internet
http_access deny test
# internet is the name ofthe group in ad
http_access deny !uldap
http_access allow uldap
http_access deny all

snmp_access allow localhost
snmp_access deny all

end _snip_

thanks!
Received on Mon Aug 04 2003 - 05:25:11 MDT