[FUG-BR] RES: RES: Squid - Retorno personalizado de mensagem

Welkson Renny de Medeiros welkson em focusautomacao.com.br
Quarta Janeiro 3 15:05:44 BRST 2007


Segue todo o squid.conf... eu não incluo nada sobre error_directory...

http_port 127.0.0.1:3128

log_fqdn off

hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 170 MB
cache_replacement_policy heap GDSF
memory_replacement_policy heap GDSF

cache_dir diskd /usr/local/squid/cache 15000 30 256
cache_access_log /usr/local/squid/logs/access.log
cache_store_log /usr/local/squid/logs/cache.log
emulate_httpd_log on

auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off

refresh_pattern ^ftp:  1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern .  0 20% 4320
half_closed_clients off

acl all src 192.168.0.0/255.255.255.0 192.168.1.0/255.255.255.0 
192.168.2.0/255.255.255.0 192.168.3.0/255.255.255.0 10.8.0.0/255.255.255.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80  # http
acl Safe_ports port 21  # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70  # gopher
acl Safe_ports port 210  # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280  # http-mgmt
acl Safe_ports port 488  # gss-http
acl Safe_ports port 591  # filemaker
acl Safe_ports port 777  # multiling http
acl CONNECT method CONNECT

always_direct allow all


# lista de sites bloqueados (sem excessao de ip)
acl bad_sites dstdom_regex "/etc/bad_sites"
http_access deny bad_sites
deny_info http://192.168.0.254/intranet/malware.htm bad_sites

# sites que poderao ser acessados pelos ips listados no ip_multpoint.txt
acl multipoint dstdom_regex "/etc/good_sites_multipoint.txt"
acl banir_usuario src "/etc/ip_multipoint.txt"
http_access deny banir_usuario !multipoint

# bloqueio de worms, malwares, virus (www.malware.com.br)
acl malware_list url_regex "/usr/local/focus/malware/malware_block_list.txt"
deny_info http://192.168.0.254/intranet/malware.htm malware_list
http_access deny malware_list

http_access allow Safe_ports
http_access allow SSL_ports
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny all
http_reply_access allow all
icp_access allow all

# Usuario sob o qual ira rodar o Squid.
cache_effective_user squid

# Grupo sob o qual ira rodar o Squid.
cache_effective_group squid

cache_mgr webmaster em focusautomacao.com.br
visible_hostname firewall

httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on


dns_testnames registro.br

forwarded_for on
follow_x_forwarded_for allow localhost
follow_x_forwarded_for deny all

acl_uses_indirect_client on
log_uses_indirect_client on

log_icp_queries off
buffered_logs on
strip_query_terms off

logfile_rotate 4

coredump_dir none

client_persistent_connections off
server_persistent_connections off

ie_refresh on


-- 
Welkson Renny de Medeiros
Focus Automação Comercial
Desenvolvimento / Gerência de Redes
welkson em focusautomacao.com.br


----- Original Message ----- 
From: "Marcos de Jesus Faria" <marcos em pompom.com.br>
To: "'Lista Brasileira de Discussão sobre FreeBSD (FUG-BR)'" 
<freebsd em fug.com.br>
Sent: Wednesday, January 03, 2007 1:56 PM
Subject: [FUG-BR] RES: RES: Squid - Retorno personalizado de mensagem


Valeu pelas dicas, Mas não funcionou, coloquei no meu outro server que tem
apache e chamei pelo endereço IP, mas não funciona.

Como vc deixou o seu comando error_directory dentro do squid.conf ?

Lembrando que toda vez que altero o qrquivo de configuração eu digito squid
-k reconfigure



Mais detalhes sobre a lista de discussão freebsd