::[root@iqbal.noc]#vi /etc/squid/squid.conf.new::
http_port 8080
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 16 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size 2000 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 10 KB
cache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSF
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
#################access list###################
acl all src 0.0.0.0/0.0.0.0
acl ubuntu src 192.168.0.5/255.255.255.255
acl ghufron src 192.168.0.10/255.255.255.255
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
################access control#################
acl xxx dstdom_regex -i "/etc/squid/xxx.txt"
http_access deny xxx
#################delay pools##################
acl ubuntu url_regex -i 192.168.0
acl ghufron url_regex -i 192.168.0
acl akses_download url_regex -i http ftp .exe .dll .zip .rar .rpm .tgz .cab
acl akses_download url_regex -i http ftp .tar.gz .tar.bz2 .iso .avi .mov
acl akses_download url_regex -i http ftp .mpg .mpeg .mp3 .ram .rm .jpg .pdf
acl akses_download url_regex -i http ftp .doc .ppt .pps .xls .mdb
###########################################
http_access allow manager localhost
http_access deny manager
http_access allow ubuntu
http_access allow akses_download
http_access allow ghufron
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all
delay_pools 3
############Akses_biasa ghufron###############
delay_class 1 2
delay_parameters 1 -1/-1 10000/96000
delay_access 1 allow ghufron
delay_access 1 deny all
############Akses_biasa ubuntu###############
delay_class 2 2
delay_parameters 2 -1/-1 10000/96000
delay_access 2 allow ubuntu
delay_access 2 deny all
############Akses_download##############
delay_class 3 3
delay_parameters 3 25000/96000 30000/96000 15000/96000
delay_access 3 allow akses_donlot
delay_access 3 deny all
#######################################
coredump_dir /var/spool/squid
Ini konfigurasi baru squid gw hehehe..hasil belajar tunning squid with cache replacement n memory replacement trs delay pools buat limit bandwith ;))... tapi gw belum test benar" optimal coz PC na lagi error ethernet na gak bisa di remote malas jadi na hehehe....mudah"an sichh lebih bagus dari sebelum na..kalo banyak salahnya maaf yach maklum kan masih newbie di linux...satu" na penguin yang bisa bikin gw repot n pusing hehehe but i love linux...
http_port 8080
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 16 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size 2000 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 10 KB
cache_replacement_policy heap LFUDA
memory_replacement_policy heap GDSF
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
#################access list###################
acl all src 0.0.0.0/0.0.0.0
acl ubuntu src 192.168.0.5/255.255.255.255
acl ghufron src 192.168.0.10/255.255.255.255
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
################access control#################
acl xxx dstdom_regex -i "/etc/squid/xxx.txt"
http_access deny xxx
#################delay pools##################
acl ubuntu url_regex -i 192.168.0
acl ghufron url_regex -i 192.168.0
acl akses_download url_regex -i http ftp .exe .dll .zip .rar .rpm .tgz .cab
acl akses_download url_regex -i http ftp .tar.gz .tar.bz2 .iso .avi .mov
acl akses_download url_regex -i http ftp .mpg .mpeg .mp3 .ram .rm .jpg .pdf
acl akses_download url_regex -i http ftp .doc .ppt .pps .xls .mdb
###########################################
http_access allow manager localhost
http_access deny manager
http_access allow ubuntu
http_access allow akses_download
http_access allow ghufron
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all
delay_pools 3
############Akses_biasa ghufron###############
delay_class 1 2
delay_parameters 1 -1/-1 10000/96000
delay_access 1 allow ghufron
delay_access 1 deny all
############Akses_biasa ubuntu###############
delay_class 2 2
delay_parameters 2 -1/-1 10000/96000
delay_access 2 allow ubuntu
delay_access 2 deny all
############Akses_download##############
delay_class 3 3
delay_parameters 3 25000/96000 30000/96000 15000/96000
delay_access 3 allow akses_donlot
delay_access 3 deny all
#######################################
coredump_dir /var/spool/squid