# ---------------------------------------------------------------------- # WARNING - do not edit this template unless you know what you are doing # ---------------------------------------------------------------------- http_port 808 # the parent cache cache_peer %PARENTPROXY% parent %PARENTPORT% 7 no-query no-digest no-netdb-exchange default #Ini untuk memaksa DNS ke OpenDNS. Bisa dihapus atau dikasih tanda pagar (#) di depannya. dns_nameservers 8.8.8.8 8.8.4.4 # performance options pipeline_prefetch %PIPELINE_PREFETCH% cache_miss_revalidate %CACHE_MISS_REVALIDATE% read_ahead_gap %READ_AHEAD_GAP% cache_replacement_policy %CACHE_REPLACEMENT_POLICY% memory_replacement_policy %MEMORY_REPLACEMENT_POLICY% # disk and memory cache settings cache_dir ufs %CACHEDIR% %CACHESIZE% 16 256 maximum_object_size %MAXOBJECTSIZE% cache_mem %MEMCACHESIZE% maximum_object_size_in_memory %MEMMAXOBJECTSIZE% # store coredumps in the first cache dir coredump_dir %CACHEDIR% # the hostname squid displays in error messages visible_hostname %VISIBLEHOSTNAME% # log & process ID file details cache_access_log stdio:%ACCESSLOG% cache_store_log stdio:%STORELOG% cache_log %CACHELOG% pid_filename %PIDFILE% # Squid listening port http_port %PORT% # Access Control lists acl manager proto cache_object acl localnet src 10.0.0.0/8 acl localnet src 172.16.0.0/12 acl localnet src 192.168.2.0/24 acl localnet src 192.168.1.0/24 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl pkgfile url_regex gs2.ww.prod.dl.playstation.net/gs2/appkgo/prod/CUSA01127_00/1/f_1818ed1e5995c6e5950f34b9c57faac61a2a63693828d6b9290e8c74e4b9d5cc/f/UP4511-CUSA01127_00-PPPPPPPPTTTTTTTT.json deny_info http://archive.org/download/studios/studios.json pkgfile http_reply_access deny pkgfile acl iconwall url_regex gs2.ww.prod.dl.playstation.net/gs2/appkgo/prod/CUSA01114_00/1/f_1a12093906541bc35b535b00d2b92966faf18f77e404548377e471f0f7aa8259/f/EP4511-CUSA01114_00-PPPPPPPPTTTTTTTT.json deny_info http://archive.org/download/yikes_201512/yikes.json iconwall http_reply_access deny iconwall # protect web apps running on the proxy host from external users http_access deny to_localhost # rules for client access go here http_access allow manager localhost http_access allow localhost http_access allow localnet http_access allow all %HTTPACCESSALLOWED% # after allowed hosts, deny all other access to this proxy # don't list any other access settings below this point http_access deny all # specify which hosts have direct access (bypassing the parent proxy) %ALWAYSDIRECT% http_access deny manager http_access deny !Safe_ports # refresh patterns (squid-recommended) refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 refresh_pattern . 0 20% 4320