Re: Problema squid en infomed

To: vtoledo@infomed.sld.cu
Cc: debian-user-spanish@lists.debian.org
Subject: Re: Problema squid en infomed
From: Ing Osniel Fariñas Sánchez <osniel@hosped.cfg.sld.cu>
Date: Fri, 25 Nov 2011 13:28:48 -0500 (CST)
Message-id: <[🔎] 1362.192.168.40.200.1322245728.squirrel@www.hosped.cfg.sld.cu>
Reply-to: osniel@hosped.cfg.sld.cu
In-reply-to: <[🔎] 20111125124650.14264r7124u971j4@webmail.sld.cu>
References: <[🔎] 20111125124650.14264r7124u971j4@webmail.sld.cu>
el proxy de salida de infomed es proxy.sld.cu ..revisa en el fichero al
principio


> buenas, ya no se que linea poner, pero esta configuracion que tengo
> del squid no me navega fuera de la red de infomed. Por favor aqui les
> envio el squid para que me digan que hacer.
>
> Gracias
>
>
> ########################################
> ###### WELCOME TO SQUID 2.7.STABLE9 ####
> ###### ---------------------------- ####
> ########################################
>
> #PROXY DE SALIDA
> cache_peer prox.sld.cu parent 3128 0 proxy-only
> cache_peer_domain prox.sld.cu !.sld.cu
> nonhierarchical_direct off
>
> auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/auth/passwd
> auth_param basic children 15
> auth_param basic realm Servidor Proxy
> auth_param basic credentialsttl 2 hours
> auth_param basic casesensitive off
>
> authenticate_cache_garbage_interval 1 hour
>
> # Recommended minimum configuration:
>
> acl all src all
> acl manager proto cache_object
> acl localhost src 127.0.0.1/32
> acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
>
> # Example rule allowing access from your local networks.
> acl localnet src 10.0.0.0/24	# RFC1918 possible internal network
>
> acl SSL_ports port 443		# https
> acl SSL_ports port 563		# snews
> acl SSL_ports port 873		# rsync
> acl Safe_ports port 80		# http
> acl Safe_ports port 21		# ftp
> acl Safe_ports port 443		# https
> acl Safe_ports port 70		# gopher
> acl Safe_ports port 210		# wais
> acl Safe_ports port 1025-65535	# unregistered ports
> acl Safe_ports port 280		# http-mgmt
> acl Safe_ports port 488		# gss-http
> acl Safe_ports port 591		# filemaker
> acl Safe_ports port 777		# multiling http
> acl Safe_ports port 631		# cups
> acl Safe_ports port 873		# rsync
> acl Safe_ports port 901		# SWAT
> acl purge method PURGE
> acl CONNECT method CONNECT
>
> # ADMINISTRATIVE PARAMETERS
> #
> -----------------------------------------------------------------------------
> visible_hostname PROXY.PHMRGG.SLD.CU  *
> error_directory /usr/share/squid/errors/Spanish
>
> #Mis ACL
> acl admins_ip src 10.0.0.100/32 10.0.0.101/32 10.0.0.10/32
>
> # Restringue uso de lunes a viernes de 6 a 23
> #acl Solode8a23_L_V time MTWHF 06:00-23:00
>
> acl filter url_regex "/etc/squid/regularesNO"
>
> # Aqui agregamos los sitios prohibidos
> acl sitiosdenegados url_regex "/etc/squid/sitiosdenegados"
> acl dom_prohi dstdomain "/etc/squid/domprohi"
>
> # sitios permitidos para apoderados
> acl sitiosapoderado url_regex "/etc/squid/sitiosapoderado"
> # acl domapoderado dstdomain "/etc/squid/domapoderado"
>
> # sitios permitidos
> acl sitiospermitidos url_regex "/etc/squid/permitidos"
>
> # sitios Nacionales puros
> acl sitiosnacionales url_regex "/etc/squid/nacionales"
>
> # ficheros permitidos
> # acl ficherosi url_regex "/etc/squid/ficherosi"
> # ficheros NO  permitidos
> acl ficheroNo urlpath_regex -i "/etc/squid/ficheroNo"
>
> # no cacheo
> acl IMAGENES urlpath_regex jpg gif png swf JPG GIF PNG SWF
> acl QUERY urlpath_regex cgi-bin cgi \? php asp html htm xml pl
> no_cache allow IMAGENES
> no_cache deny QUERY
> refresh_pattern .               0       0%      0
>
> # Aqui agregas en cada linea los usuarios que van a tener acceso a
> internet
> acl full_users proxy_auth "/etc/squid/auth/inet"
>
> # Aqui agregas en cada linea los usuarios que solo tienen acceso nacional
> acl nac_users proxy_auth "/etc/squid/auth/nac"
>
> # Aqui acceso de los apoderados
> acl apoderado_users proxy_auth "/etc/squid/auth/apoderado"
>
> ################# MSN bloques #################
> acl libmsnmessenger url_regex gateway.dll
> acl msn dstdomain loginnet.passport.com
> acl MSN2 dstdomain messenger.hotmail.com
> acl MSN3 dstdomain gateway.messenger.hotmail.com
>
> #Mis http_access
> http_access deny msn
> http_access deny MSN2
> http_access deny MSN3
> http_access deny libmsnmessenger
> ################# MSN bloques #################
>
> # http_access allow ficherosi
> http_access deny ficheroNo
>
> # solo permite el trabajo de lunes a viernes de 6 a 23 horas
> # http_access deny !Solode8a23_L_V
>
> http_access allow sitiospermitidos
> http_access deny sitiosdenegados
> http_access deny dom_prohi
>
> http_access allow admins_ip
> http_access allow full_users
> http_access deny full_users
>
> http_access allow apoderado_users sitiosapoderado
> http_access deny apoderado_users
>
> http_access allow nac_users sitiosnacionales
> http_access deny nac_users
>
> # And finally deny all other access to this proxy
> http_access deny all
>
> #Allow ICP queries from local networks only
> icp_access allow localnet
> icp_access deny all
>
> http_port 10.0.0.100:8080 transparent
>
> # MEMORY CACHE OPTIONS
> #
> #Default:
> cache_mem 512 MB
>
> #  TAG: maximum_object_size_in_memory	(bytes)
> #	Objects greater than this size will not be attempted to kept in
> #	the memory cache. This should be set high enough to keep objects
> #	accessed frequently in memory to improve performance whilst low
> #	enough to keep larger objects from hoarding cache_mem.
> #
> #Default:
> # maximum_object_size_in_memory 8 KB
>
> #  TAG: memory_replacement_policy
> #	The memory replacement policy parameter determines which
> #	objects are purged from memory when memory space is needed.
> #
> #	See cache_replacement_policy for details.
> #
> #Default:
> # memory_replacement_policy lru
>
>
> # DISK CACHE OPTIONS
> #
> -----------------------------------------------------------------------------
>
> #  TAG: cache_dir
> #	Usage:
> #Default:
> cache_dir aufs /var/spool/squid 2048 32 256
>
>
> #  TAG: cache_swap_low	(percent, 0-100)
> #  TAG: cache_swap_high	(percent, 0-100)
> #Default:
> cache_swap_low 90
> cache_swap_high 95
>
> #  TAG: access_log
> access_log /var/log/squid/access.log squid
>
> #  TAG: cache_log
> #Default:
> # cache_log /var/log/squid/cache.log
>
> #  TAG: cache_store_log
> #Default:
> # cache_store_log /var/log/squid/store.log
>
> #  TAG: cache_swap_state
> #
> #	If have more than one 'cache_dir', and %s is not used in the name
> #	these swap logs will have names such as:
> #
> #		cache_swap_log.00
> #		cache_swap_log.01
> #		cache_swap_log.02
> #
> #Default:
> # none
>
> #  TAG: logfile_rotate
> #	Specifies the number of logfile rotations to make when you
> #	type 'squid -k rotate'.  #
> #Default:
> logfile_rotate 30
>
> #  TAG: emulate_httpd_log	on|off
> #Default:
> emulate_httpd_log on
>
>
> #Suggested default:
> refresh_pattern ^ftp:		1440	20%	10080
> refresh_pattern ^gopher:	1440	0%	1440
> refresh_pattern -i (/cgi-bin/|\?) 0	0%	0
> refresh_pattern (Release|Package(.gz)*)$	0	20%	2880
> # example line deb packages
> #refresh_pattern (\.deb|\.udeb)$   129600 100% 129600
> refresh_pattern .		0	20%	4320
>
>
> #  TAG: upgrade_http0.9
> # Don't upgrade ShoutCast responses to HTTP
> acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
> upgrade_http0.9 deny shoutcast
>
>
> #  TAG: broken_vary_encoding
> acl apache rep_header Server ^Apache
> broken_vary_encoding allow apache
>
> #  TAG: extension_methods
> extension_methods REPORT MERGE MKACTIVITY CHECKOUT
>
> #  TAG: prefer_direct
> #Default:
> prefer_direct on
>
> #  TAG: always_direct
> #	Usage: always_direct allow|deny [!]aclname ...
> always_direct allow all
>
> #  TAG: hosts_file
> hosts_file /etc/hosts
>
>
> #  TAG: ignore_unknown_nameservers
> #	By default Squid checks that DNS responses are received
> #	from the same IP addresses they are sent to.  If they
> #	don't match, Squid ignores the response and writes a warning
> #	message to cache.log.  You can allow responses from unknown
> #	nameservers by setting this option to 'off'.
> #  TAG: ipcache_size	(number of entries)
> #  TAG: ipcache_low	(percent)
> #  TAG: ipcache_high	(percent)
> #	The size, low-, and high-water marks for the IP cache.
> #
> #Default:
> ipcache_size 1024
> ipcache_low 90
> ipcache_high 95
> #  TAG: coredump_dir
> coredump_dir /var/spool/squid
>
> # Usar FTP pasivo
> ftp_passive             on
>
> ----------------------------------------------------------------
> This message was sent using IMP, the Internet Messaging Program.
>
>
> --
>
> Este mensaje le ha llegado mediante el servicio de correo electronico que
> ofrece Infomed para respaldar el cumplimiento de las misiones del Sistema
> Nacional de Salud. La persona que envia este correo asume el compromiso de
> usar el servicio a tales fines y cumplir con las regulaciones establecidas
>
> Infomed: http://www.sld.cu/
>
>
> --
> To UNSUBSCRIBE, email to debian-user-spanish-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
> Archive:
> [🔎] 20111125124650.14264r7124u971j4@webmail.sld.cu">http://lists.debian.org/[🔎] 20111125124650.14264r7124u971j4@webmail.sld.cu
>
>



--

Este mensaje le ha llegado mediante el servicio de correo electronico que ofrece Infomed para respaldar el cumplimiento de las misiones del Sistema Nacional de Salud. La persona que envia este correo asume el compromiso de usar el servicio a tales fines y cumplir con las regulaciones establecidas

Infomed: http://www.sld.cu/
Reply to:
Follow-Ups:
- Re: Problema squid en infomed
  - From: vtoledo@infomed.sld.cu
References:
- Problema squid en infomed
  - From: vtoledo@infomed.sld.cu
Prev by Date: Re: La última actualización de iceweasel 8.0 no viene en español
Next by Date: Re: Problema squid en infomed
Previous by thread: Problema squid en infomed
Next by thread: Re: Problema squid en infomed
Index(es):
- Date
- Thread