[opensuse-es] squid + squidGuard
Estimados, estoy tranto de bloquear unos sitios con squid + squidGuard pero no he tenido exito. Pego mi configuración a ver si alguno me puede dar una manito. Gracias -squid.conf acl all src all acl manager proto cache_object acl localhost src 127.0.0.1/32 acl to_localhost dst 127.0.0.0/8 acl localnet src 10.0.0.0/8 acl localnet src 172.16.0.0/12 acl localnet src 192.168.0.0/16 acl SSL_ports port 443 acl Safe_ports port 80 acl Safe_ports port 21 acl Safe_ports port 443 acl Safe_ports port 70 acl Safe_ports port 210 acl Safe_ports port 1025-65535 acl Safe_ports port 280 acl Safe_ports port 488 acl Safe_ports port 591 acl Safe_ports port 777 acl CONNECT method CONNECT acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9] acl apache rep_header Server ^Apache broken_vary_encoding allow apache access_log /var/log/squid/access.log squid http_access allow manager localhost http_access deny manager http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access allow all redirect_program /usr/sbin/squidGuard -c /etc/squidguard.conf icp_access allow localnet icp_access deny all http_port 3128 hierarchy_stoplist cgi-bin ? cache_mem 64 MB memory_replacement_policy lru cache_replacement_policy lru cache_dir ufs /var/cache/squid 100 16 256 minimum_object_size 0 KB maximum_object_size 4096 KB cache_swap_low 90 cache_log /var/log/squid/cache.log cache_store_log /var/log/squid/store.log emulate_httpd_log off ftp_passive on refresh_pattern ^ftp: 1440 20 10080 refresh_pattern ^gopher: 1440 0 1440 refresh_pattern -i (/cgi-bin/|\?) 0 0 0 refresh_pattern . 0 20 4320 upgrade_http0.9 deny shoutcast connect_timeout 2 minutes client_lifetime 1 days cache_mgr webmaster coredump_dir /var/cache/squid cache_swap_high 95 -- squidGuard.conf (segun el log squidguard creo bien la base de datos) dbhome /var/lib/squidGuard/db logdir /var/log/squidGuard time workhours { weekly mtwhf 08:00 - 16:30 date *-*-01 08:00 - 16:30 } dest micro { domainlist micro/domains urllist micro/urls expressionlist micro/expressions redirect http://www.google.com } acl { default { pass !micro any } } -- Para dar de baja la suscripción, mande un mensaje a: opensuse-es+unsubscribe@opensuse.org Para obtener el resto de direcciones-comando, mande un mensaje a: opensuse-es+help@opensuse.org
ya encontre ! redirect_program /usr/sbin/squidGuard -c /etc/squidguard.conf -d 2011/7/23 jp_listero <jplistero@gmail.com>:
Estimados,
estoy tranto de bloquear unos sitios con squid + squidGuard pero no he tenido exito. Pego mi configuración a ver si alguno me puede dar una manito. Gracias
-squid.conf
acl all src all acl manager proto cache_object acl localhost src 127.0.0.1/32 acl to_localhost dst 127.0.0.0/8 acl localnet src 10.0.0.0/8 acl localnet src 172.16.0.0/12 acl localnet src 192.168.0.0/16 acl SSL_ports port 443 acl Safe_ports port 80 acl Safe_ports port 21 acl Safe_ports port 443 acl Safe_ports port 70 acl Safe_ports port 210 acl Safe_ports port 1025-65535 acl Safe_ports port 280 acl Safe_ports port 488 acl Safe_ports port 591 acl Safe_ports port 777 acl CONNECT method CONNECT acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9] acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
access_log /var/log/squid/access.log squid
http_access allow manager localhost http_access deny manager http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access allow all
redirect_program /usr/sbin/squidGuard -c /etc/squidguard.conf
icp_access allow localnet icp_access deny all http_port 3128
hierarchy_stoplist cgi-bin ?
cache_mem 64 MB
memory_replacement_policy lru
cache_replacement_policy lru
cache_dir ufs /var/cache/squid 100 16 256
minimum_object_size 0 KB
maximum_object_size 4096 KB
cache_swap_low 90
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
emulate_httpd_log off
ftp_passive on
refresh_pattern ^ftp: 1440 20 10080 refresh_pattern ^gopher: 1440 0 1440 refresh_pattern -i (/cgi-bin/|\?) 0 0 0 refresh_pattern . 0 20 4320
upgrade_http0.9 deny shoutcast
connect_timeout 2 minutes
client_lifetime 1 days
cache_mgr webmaster
coredump_dir /var/cache/squid cache_swap_high 95
-- squidGuard.conf (segun el log squidguard creo bien la base de datos)
dbhome /var/lib/squidGuard/db logdir /var/log/squidGuard
time workhours { weekly mtwhf 08:00 - 16:30 date *-*-01 08:00 - 16:30 }
dest micro { domainlist micro/domains urllist micro/urls expressionlist micro/expressions redirect http://www.google.com }
acl { default { pass !micro any } }
-- Para dar de baja la suscripción, mande un mensaje a: opensuse-es+unsubscribe@opensuse.org Para obtener el resto de direcciones-comando, mande un mensaje a: opensuse-es+help@opensuse.org
participants (1)
-
jp_listero