-
1. Data: 2004-08-04 16:52:30
Temat: Squid "co by w nim jeszcze zmienić"
Od: "paol" <p...@p...onet.pl>
squid.conf:
http_port 8081
icp_port 3131
hierarchy_stoplist cgi-bin ? avi mp3 mpeg zip
acl QUERY urlpath_regex cgi-bin \? \.mp3$ \.zip$ \.avi$ \.mpeg$
no_cache deny QUERY
acl mmedia urlpath_regex -i \.mp3$ \.mpeg$ \.avi$ \.mov$ \.mpg$ \.wma$
acl mmedia urlpath_regex \.avi$ \.mpeg$ \.mp3$ \.mov$ \.mpg$ \.wma$
acl mmedia urlpath_regex -i .mp3$ .avi$ .asf$ .mpg$ .mpeg$ .m2v$ .rm$ .wmv$ .
mov$
no_cache deny mmedia
cache_mem 512 MB
cache_swap_low 80
cache_swap_high 100
maximum_object_size 32768 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 128 KB
ipcache_size 32768
fqdncache_size 0
cache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSF
client_db off
buffered_logs on
log_icp_queries off
memory_pools on
log_fqdn off
strip_query_terms off
dns_nameservers 127.0.0.1
positive_dns_ttl 2 hours
negative_dns_ttl 2 hours
cache_dns_program /usr/local/squid2/bin/dnsserver
dns_children 32
negative_ttl 30 seconds
cache_dir diskd /cache0 7000 16 256 Q1=80 Q2=72
cache_dir diskd /cache1 7000 16 256 Q1=80 Q2=72
cache_dir diskd /cache6 7000 16 256 Q1=80 Q2=72
cache_dir diskd /cache7 7000 16 256 Q1=80 Q2=72
cache_dir diskd /cache2 7000 16 256 Q1=80 Q2=72
cache_dir diskd /cache3 7000 16 256 Q1=80 Q2=72
cache_dir diskd /cache4 7000 16 256 Q1=80 Q2=72
cache_dir diskd /cache5 7000 16 256 Q1=80 Q2=72
store_dir_select_algorithm round-robin
cache_access_log /dev/null
cache_log /usr/local/squid2/var/logs/cache.log
cache_store_log none
redirect_rewrites_host_header off
request_header_max_size 128 KB
request_body_max_size 0 KB
refresh_pattern -i (.*jpg$|.*gif$) 0 50% 28800
refresh_pattern -i (.*html$|.*htm|.*shtml) 0 20% 1440
refresh_pattern (http://.*/$) 0 20% 1440
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
quick_abort_min -1
quick_abort_max 0 KB
quick_abort_pct 95
range_offset_limit 0 KB
maximum_single_addr_tries 5
connect_timeout 60 minute
read_timeout 5 minutes
request_timeout 30 seconds
persistent_request_timeout 60 minute
client_persistent_connections off
client_lifetime 3600 minutes
half_closed_clients off
pconn_timeout 60 seconds
shutdown_lifetime 30 seconds
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
acl our_networks src xxx.xxx.xxx.xxx/xx
http_access allow our_networks
http_access deny all
http_reply_access allow all
cache_effective_user nobody
forwarded_for on
store_avg_object_size 32 KB
store_objects_per_bucket 36
reload_into_ims on
snmp_port 3402
snmp_access allow localhost
snmp_access deny all
wccp_router 192.168.6.1
wccp_version 4
#wccp_incoming_address
# wccp_outgoing_address 255.255.255.255
ie_refresh on
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
#offline_mode on
max_open_disk_fds 8192
Parametry kompilowania:
./configure --disable-internal-dns --with-dl --with-aio --enable-carp
--enable-http-violations --with-pthreads --enable-storeio=ufs,aufs,diskd
--enable-removal-policies="heap lru" --enable-delay-pools --enable-wccp
--enable-snmp --enable-linux-netfilter --disable-ident-lookups
--disable-hostname-checks --enable-underscores --enable-async-io=160
--enable-pool --enable-truncate --enable-cache-digests
--prefix=/usr/local/squid2
--
Wysłano z serwisu OnetNiusy: http://niusy.onet.pl
-
2. Data: 2004-08-04 20:24:33
Temat: Re: Squid "co by w nim jeszcze zmienić"
Od: "AmF1k" <a...@l...gliwice.pl>
Użytkownik "paol" <p...@p...onet.pl> napisał w wiadomości
news:26c3.0000029e.4111144e@newsgate.onet.pl...
> squid.conf:
> http_port 8081
> icp_port 3131
> hierarchy_stoplist cgi-bin ? avi mp3 mpeg zip
> acl QUERY urlpath_regex cgi-bin \? \.mp3$ \.zip$ \.avi$ \.mpeg$
> no_cache deny QUERY
> acl mmedia urlpath_regex -i \.mp3$ \.mpeg$ \.avi$ \.mov$ \.mpg$ \.wma$
> acl mmedia urlpath_regex \.avi$ \.mpeg$ \.mp3$ \.mov$ \.mpg$ \.wma$
> acl mmedia urlpath_regex -i .mp3$ .avi$ .asf$ .mpg$ .mpeg$ .m2v$ .rm$
> .wmv$ . mov$
> no_cache deny mmedia
> cache_mem 512 MB
> cache_swap_low 80
> cache_swap_high 100
> maximum_object_size 32768 KB
> minimum_object_size 0 KB
> maximum_object_size_in_memory 128 KB
> ipcache_size 32768
> fqdncache_size 0
> cache_replacement_policy heap LFUDA
> memory_replacement_policy heap GDSF
> client_db off
> buffered_logs on
> log_icp_queries off
> memory_pools on
> log_fqdn off
> strip_query_terms off
> dns_nameservers 127.0.0.1
> positive_dns_ttl 2 hours
> negative_dns_ttl 2 hours
> cache_dns_program /usr/local/squid2/bin/dnsserver
> dns_children 32
> negative_ttl 30 seconds
> cache_dir diskd /cache0 7000 16 256 Q1=80 Q2=72
> cache_dir diskd /cache1 7000 16 256 Q1=80 Q2=72
> cache_dir diskd /cache6 7000 16 256 Q1=80 Q2=72
> cache_dir diskd /cache7 7000 16 256 Q1=80 Q2=72
> cache_dir diskd /cache2 7000 16 256 Q1=80 Q2=72
> cache_dir diskd /cache3 7000 16 256 Q1=80 Q2=72
> cache_dir diskd /cache4 7000 16 256 Q1=80 Q2=72
> cache_dir diskd /cache5 7000 16 256 Q1=80 Q2=72
> store_dir_select_algorithm round-robin
> cache_access_log /dev/null
> cache_log /usr/local/squid2/var/logs/cache.log
> cache_store_log none
> redirect_rewrites_host_header off
> request_header_max_size 128 KB
> request_body_max_size 0 KB
> refresh_pattern -i (.*jpg$|.*gif$) 0 50% 28800
> refresh_pattern -i (.*html$|.*htm|.*shtml) 0 20% 1440
> refresh_pattern (http://.*/$) 0 20% 1440
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern . 0 20% 4320
> quick_abort_min -1
> quick_abort_max 0 KB
> quick_abort_pct 95
> range_offset_limit 0 KB
> maximum_single_addr_tries 5
> connect_timeout 60 minute
> read_timeout 5 minutes
> request_timeout 30 seconds
> persistent_request_timeout 60 minute
> client_persistent_connections off
> client_lifetime 3600 minutes
> half_closed_clients off
> pconn_timeout 60 seconds
> shutdown_lifetime 30 seconds
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl to_localhost dst 127.0.0.0/8
> acl SSL_ports port 443 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> http_access allow manager localhost
> http_access deny manager
> # Deny requests to unknown ports
> http_access deny !Safe_ports
> # Deny CONNECT to other than SSL ports
> http_access deny CONNECT !SSL_ports
> acl our_networks src xxx.xxx.xxx.xxx/xx
> http_access allow our_networks
> http_access deny all
> http_reply_access allow all
> cache_effective_user nobody
> forwarded_for on
> store_avg_object_size 32 KB
> store_objects_per_bucket 36
> reload_into_ims on
> snmp_port 3402
> snmp_access allow localhost
> snmp_access deny all
> wccp_router 192.168.6.1
> wccp_version 4
> #wccp_incoming_address
> # wccp_outgoing_address 255.255.255.255
> ie_refresh on
> httpd_accel_host virtual
> httpd_accel_port 80
> httpd_accel_with_proxy on
> httpd_accel_uses_host_header on
> #offline_mode on
> max_open_disk_fds 8192
> Parametry kompilowania:
> ./configure --disable-internal-dns --with-dl --with-aio --enable-carp
> --enable-http-violations --with-pthreads --enable-storeio=ufs,aufs,diskd
> --enable-removal-policies="heap lru" --enable-delay-pools --enable-wccp
> --enable-snmp --enable-linux-netfilter --disable-ident-lookups
> --disable-hostname-checks --enable-underscores --enable-async-io=160
> --enable-pool --enable-truncate --enable-cache-digests
> --prefix=/usr/local/squid2
a wystepuja jakies problemy na takowej ?:))
--
Pozdrawiam
J.
:---------------------------: Jacek Zaręba :---------------------------:
gg: 1186306 :: "Nie chciałem być wulgarny, używać brudnych słów"
gsm: 505262929 :: http://www.offmusic.pl/farben/start.swf
email: jacek at malenstwo dot net :: Farben Lehre
:---------------------------------------------------
-------------------:
-
3. Data: 2004-08-04 20:31:33
Temat: Re: Squid "co by w nim jeszcze zmienić"
Od: Maciej Anczura <s...@k...org>
AmF1k wrote:
>> acl Safe_ports port 1025-65535 # unregistered ports
[+119 innych linijek pliku .conf]
> a wystepuja jakies problemy na takowej ?:))
Tylko jeden - długość, która powoduje wkurwik całej grupy przy cytowaniu
jej przez kogoś, kto nie umie tego robić.
--
sh
-
4. Data: 2004-08-04 20:36:30
Temat: Re: Squid "co by w nim jeszcze zmienić"
Od: "Theli" <t...@v...ci.uw.edu.pl>
>
> cache_mem 512 MB
>
Ile masz ramu w serwerze?
--
Pozdrawiam
Theli
-
5. Data: 2004-08-04 20:55:51
Temat: Re: Squid "co by w nim jeszcze zmienić"
Od: Tomasz Finke <t...@i...pwr.wroc.pl>
paol wrote:
> cache_access_log /dev/null
Jeśli to publiczny serwer, a nie korporacyjny, to prędzej czy później
przyjdą do Ciebie smutni panowie i poproszą o pokazanie kawałka tego
pliku. W tych czasach walki z terroryzmem może lepiej nie spuszczać
ich na drzewo :)
T.
-
6. Data: 2004-08-04 21:31:10
Temat: Re: Squid "co by w nim jeszcze zmienić"
Od: The Obserwer <S...@b...the.firewalls.on.the.net>
paol napisał(a):
> squid.conf:
>
> http_port 8081
> icp_port 3131
>
[..]
www.usenet.pl
RTFM ...
No i NTG !!!
-
7. Data: 2004-08-04 21:32:05
Temat: Re: Squid "co by w nim jeszcze zmienić"
Od: The Obserwer <S...@b...the.firewalls.on.the.net>
paol napisał(a):
> squid.conf:
>
> http_port 8081
> icp_port 3131
>
[..]
www.usenet.pl
Nastęnym razem jak będziesz miał problem z gofrownicą też tutaj napiszesz ??
RTFM ...
No i NTG !!!
-
8. Data: 2004-08-04 22:24:59
Temat: Re: Squid "co by w nim jeszcze zmienić"
Od: Grzegorz Janoszka <G...@S...pro.onet.pl>
On Wed, 4 Aug 2004 22:36:30 +0200 I had a dream that Theli <t...@v...ci.uw.edu.pl>
wrote:
>> cache_mem 512 MB
> Ile masz ramu w serwerze?
Sądząc po tym, to ma z 4 GB :)
--
Grzegorz Janoszka odpowiadając POPRAW adres
UWAGA, mam specyficzne poczucie humoru! Na newsach wyrażam swoje prywatne
specyficzne poglądy, a nie moich byłych, obecnych i przyszłych pracodawców.
-
9. Data: 2004-08-04 22:52:43
Temat: Re: Squid "co by w nim jeszcze zmienić"
Od: "AmF1k" <a...@l...gliwice.pl>
Użytkownik "Maciej Anczura" <s...@k...org> napisał w wiadomości
news:slrnch2ht3.v5h.shog-usenet@terror.icm.edu.pl...
> AmF1k wrote:
>>> acl Safe_ports port 1025-65535 # unregistered ports
> [+119 innych linijek pliku .conf]
>> a wystepuja jakies problemy na takowej ?:))
> Tylko jeden - długość, która powoduje wkurwik całej grupy przy cytowaniu
> jej przez kogoś, kto nie umie tego robić.
Widze, ze prawda jest ze nadgorliwosc (niektorych)jest gorsza od faszyzmu :)
--
Pozdrawiam
J.
:---------------------------: Jacek Zaręba :---------------------------:
gg: 1186306 :: "Nie chciałem być wulgarny, używać brudnych słów"
gsm: 505262929 :: http://www.offmusic.pl/farben/start.swf
email: jacek at malenstwo dot net :: Farben Lehre
:---------------------------------------------------
-------------------:
-
10. Data: 2004-08-05 07:50:39
Temat: Re: Squid "co by w nim jeszcze zmienić"
Od: "Marek" <m...@o...pl>
Całkowicie NTG, ale moim zdaniem "negative_dns_ttl 2 hours" to niezbyt dobry
pomysł...
--
Marek
do góry
Legnicka Vita: nowa inwestycja mieszkaniowa Develii we Wrocławiu
