Srs. Bom dia. Estou montando um servidor cache. Cenário link adsl 2mb isso mesmo 2 mb infelizmente não temos outra opção de link, Divido a internet com 11 pessoas a ideia não é fazer bloqueis por enquanto rs mas sim aumentar a performance da internet a servidor já esta em produção. Montei o script abaixo com base em pesquisa em alguns sites e gostaria de uma ajuda para aperfeiçoar o serviço com a ajuda de vc’s.
Algumas linha estão apresentando erro não consigo declara toda a minha rede no cache. como estou no trabalho não consigo posta o erro no momento mas assim que possível irei postar. Hardware Intel i3 Memoria 2gb Hd 350gb SO. Debian 6 Squid 3.X #PORTA DO PROXY http_port 3128 transparent always_direct allow all # Nome do servidor - contato visible_hostname SRV-CACHE cache_mgr alan.ina...@yahoo.com.br # CONFIGURACAO DOS LOGS access_log /var/log/squid3/access.log access_log /var/log/squid3/cache.log cache_store_log /var/log/squid3/store.log error_directory /usr/share/squid3/errors/Portuguese # DIRETORIO DO CACHE LIBERADO 240GB NO HD DE 350GB cache_dir aufs /var/cache/squid3 240000 16 256 # MEMORIA TOTAL DO SRV 2GB DDR3 1066 cache_mem 1024 MB memory_pools off maximum_object_size_in_memory 512 KB memory_replacement_policy heap GDSF quick_abort_min -1 KB maximum_object_size 1024 MB minimum_object_size 0 KB cache_swap_low 80 cache_swap_high 90 ipcache_size 1024 ipcache_low 80 ipcache_high 90 fqdncache_size 1024 # client_request_buffer_max_size 512 KB #### DESATIVADO ESTA COM ERRO # reply_body_max_size 100 MB #### DESATIVADO ESTA COM ERRO detect_broken_pconn on # ACL # acl all src 0.0.0.0/0.0.0.0 #### DESATIVADO ESTA COM ERRO acl manager proto cache_object acl localhost src 127.0.0.1/32 acl SSL_ports port 443 563 873 # https, snews acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 973 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # portas altas acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl Safe_ports port 3389 # acesso remoto windows acl CONNECT method CONNECT http_access allow manager localhost http_access allow manager http_access allow !Safe_ports http_access allow CONNECT !SSL_ports http_access allow all # DNS dns_nameservers 8.8.8.8 dns_nameservers 8.8.4.4 refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 refresh_pattern . 0 20% 4320 # Atualizacoes do cache hierarchy_stoplist cgi-bin ? hierarchy_stoplist html ? refresh_pattern -i \.jpg$ 0 50% 21600 reload-into-ims refresh_pattern -i \.gif$ 0 50% 21600 reload-into-ims refresh_pattern -i \.png$ 0 50% 21600 reload-into-ims refresh_pattern -i \.jpeg$ 0 50% 21600 reload-into-ims refresh_pattern -i \.bmp$ 0 50% 21600 reload-into-ims refresh_pattern -i \.tif$ 0 50% 21600 reload-into-ims refresh_pattern -i \.tiff$ 0 50% 21600 reload-into-ims refresh_pattern -i \.swf$ 0 50% 21600 reload-into-ims refresh_pattern -i \.exe$ 0 50% 21600 reload-into-ims refresh_pattern -i \.php$ 0 20% 1440 reload-into-ims refresh_pattern -i \.html$ 0 20% 1440 reload-into-ims refresh_pattern -i \.htm$ 0 20% 1440 reload-into-ims refresh_pattern -i \.shtml$ 0 20% 1440 reload-into-ims refresh_pattern -i \.shtm$ 0 20% 1440 reload-into-ims # Videos refresh_pattern -i \.(mp3|mp4|m4a|ogg|mov|avi|wmv|flv)$ 10080 90% 999999 ignore-no-cache override-expire ignore-private # Widows UPDATE refresh_pattern -i microsoft.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|psf) 4320 80% 43200 reload-into-ims refresh_pattern -i windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|psf) 4320 80% 43200 reload-into-ims refresh_pattern -i update.microsoft.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|dsft) 4320 80% 432000 reload-into-ims refresh_pattern -i microsoft.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|dsft) 4320 80% 432000 reload-into-ims refresh_pattern -i windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|dsft) 4320 80% 432000 reload-into-ims refresh_pattern -i windows.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|dsft) 4320 80% 432000 reload-into-ims refresh_pattern -i c2r.microsoft.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|dsft) 4320 80% 432000 reload-into-ims refresh_pattern -i download.windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|asf|wm[v|a]|dat|zip|dsft) 4320 80% 432000 reload-into-ims # Antivirus refresh_pattern guru.avg.com/.*\.(bin) 4320 100% 43200 reload-into-ims refresh_pattern bguru.avg.com/.*\.(bin) 4320 100% 43200 reload-into-ims refresh_pattern af.avg.com/.*\.(bin) 4320 100% 43200 reload-into-ims refresh_pattern mbam-cdn.malwarebytes.org/.*\.(exe) 4320 100% 43200 reload-into-ims refresh_pattern data-cdn.mbamupdates.com/.*\.(ref) 4320 100% 43200 reload-into-ims refresh_pattern avast.com/.*\.(vpu|cab|stamp|exe) 10080 100% 43200 reload-into-ims refresh_pattern personal.avira-update.com/.*\.(cab|exe|dll|msi|gz) 10080 100% 43200 reload-into-ims # Leave coredumps in the first cache dir coredump_dir /var/spool/squid