[squid-users] config problem

From: David C. Heitmann <david_at_lafourmi.de>
Date: Mon, 01 Feb 2010 14:49:02 +0100

good evening squid support team,
my squidversion is 2.7 stable3

i have problems with connection to https and ftp sites with squid :(

my squid.conf file is in attachement.

thanks to regard
david c. heitmann

------------------------------------------------------------------------

#Netzwerkverbindungen
http_port 192.168.10.10:8080
http_port 192.168.10.10:3128

#ICP Protokoll
icp_port 0

#Speichergroesse
cache_mem 64 MB
ipcache_size 5000

#Logfile- und Cache-Verzeichnisse
cache_dir ufs /var/cache/squid 100 16 256

#Logfile-Path
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log

#Prozess-ID-Datei
pid_filename /var/run/squid.pid

#Logging der IP-Adresse oder Rechner-Names
log_fqdn on

#eMail Adresse des Admins
cache_mgr david_at_lafourmi.de

#Standartuser und -gruppe
cache_effective_user squid
cache_effective_group squid

#Vollstaendiger Rechnername
visible_hostname proxyfuck

#Anonymisieren der IP-Adresse
forwarded_for off

#AntiVirus
redirect_program /usr/bin/squidvir.pl

#Authentifiyierung mittels Passwortdatei
auth_param basic program /usr/lib/squid/ncsa_auth /squid/users/.pass
auth_param basic realm Authentifizierung am ProxyServer Lafourmi
auth_param basic children 10
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
authenticate_cache_garbage_interval 3600 seconds
authenticate_ttl 1 hour
authenticate_ip_ttl 3600 seconds

acl passwd proxy_auth REQUIRED
acl login_users proxy_auth "/etc/squid/users"
acl login_admin proxy_auth "/etc/squid/admin"

#Bestimmte Objekte nicht speichern
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY

#Access Control Lists (ACL)
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl laf src 192.168.10.0/255.255.255.0
acl manager proto cache_object

acl Safe_ports port 407 #login
acl SSL_ports port 443 #ssl acl SSL_ports port 563 #snews
acl SSL_ports port 995 #rsync
acl Safe_ports port 80 #http
acl Safe_ports port 20 #ftp_up
acl Safe_ports port 21 #ftp_down
acl Safe_ports port 22 #ssh
acl Safe_ports port 443 #https acl Safe_ports port 563 #snews
acl Safe_ports port 70 #gopher
acl Safe_ports port 210 #wais
acl Safe_ports port 1025-65535 #unregistered ports
acl Safe_ports port 280 #http-mgmt
acl Safe_ports port 488 #gss-http
acl Safe_ports port 591 #filemaker
acl Safe_ports port 777 #multiling http
acl Safe_ports port 66 #socks
acl Safe_ports port 110 #pop3
acl Safe_ports port 25 #smtp
acl Safe_ports port 465 #smtp
acl Safe_ports port 587 #smtp
acl Safe_ports port 143 #imap
acl Safe_ports port 993 #imap
acl Safe_ports port 631 #cups
acl Safe_ports port 1863 #msn
acl Safe_ports port 7001 #msn
acl Safe_ports port 9 #msn
acl Safe_ports port 30000-65535 #msn
acl Safe_ports port 5000-65535 #msn
acl Safe_ports port 1025-65535 #msn
acl Safe_ports port 1503 #msn
acl Safe_ports port 3389 #msn
acl Safe_ports port 49152-65535 #msn
acl Safe_ports port 5061 #msn
acl Safe_ports port 1025-65535 #msn

#acl PURGE method PURGE
acl CONNECT method CONNECT

#Gesperrte Ausdrücke
acl gesperrt url_regex -i "/etc/squid/gesperrt"

http_access allow login_users http_access allow login_admin
#http_access allow PURGE localhost
http_access allow manager localhost
http_access allow laf !gesperrt

#http_access deny PURGE
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny all

#cache_peer "Firewall-Proxy" parent 8080 3128
#never_direct allow all

#Bestimmte URLs ausschliessen
#acl banner url_regex ^http://banner[0-9]*\.z
#http_access deny banner

#Laden von Dateien verhindern, wenn abgebrochen wurde
quick_abort_min 0 KB
quick_abort_max 0 KB
quick_abort_pct 100
Received on Mon Feb 01 2010 - 13:49:24 MST

This archive was generated by hypermail 2.2.0 : Mon Feb 01 2010 - 12:00:05 MST