با سلام خدمت اساتید این اولین باره که دارم اسکوئید نصب می کنم لطفا راهنمایی بفرمایید این کانفیگ برای سرعت 512 و ماکزیمم 30 یوزر مناسبه و از لحاظ امنیتی هم هیچ مشکلی داره یا نه؟
سیستمم هم رم 2 گیگ
متاسفانه هر کاری هم کردم iptables کار نمی کرد اگه دستور iptables رو برای این سیستم بنویسید ممنون می شم
خروجی 192.168.11.1 eth1
ورودی 78.38.12.56 eth0
http_port 3128 transparent
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl apache rep_header Server ^Apache
cache_dir aufs /var/spool/squid 8192 32 512
log_fqdn off
debug_options ALL,1
refresh_pattern ^ftp: 2880 25% 10080
refresh_pattern ^gopher: 2880 0% 2880
refresh_pattern -i \.(htmx|xhtml|sxml|shtml|java|aspx|perl)$ 5760 60% 10080 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(do|asp|css|php|xml|ocx|html|chtml|phtml)$ 5760 60% 10080 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(jpg|jpe|aac|jpeg|gif|png|bmp|pic)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(mpg|mpeg|mov|avi|midi|wmv|asx|thm)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(mid|wav|mp[234]|rm|ra|ram|wma|au)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(css|js|jar|class|pdf|doc|swf|txt)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(exe|tgz|tbz|tar|gz|bz2|zip|rar|cab)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(xbm|thb|dcr|art|spl|viv|z|vrm|vrml)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(jpg|jpe|aac|jpeg|gif|png|bmp|pic)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(aif|aifc|aiff|arj|c|cpt|dir|dxr|hqx)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(lha|lzh|movie|mpe|mpga|pl|ppt|ps|qt)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern -i \.(qtm|ras|sea|sit|tif|tiff|js|jsp|fla)$ 20160 95% 99000 ignore-reload override-expire override-lastmod
refresh_pattern
http://*.windowsupdate.microsoft.com/ 300 60% 20160
refresh_pattern
Microsoft Windows Update 300 60% 20160
refresh_pattern
http://download.macromedia.com/ 300 60% 20160
refresh_pattern
http://download.microsoft.com/ 300 60% 20160
refresh_pattern
http://office.microsoft.com/ 300 60% 20160
refresh_pattern
http://wxpsp2.microsoft.com/ 300 60% 20160
refresh_pattern
IBM Support and downloads 300 60% 20160
refresh_pattern
http://w2ksp4.microsoft.com/ 300 60% 20160
refresh_pattern
http://xpsp1.microsoft.com/ 300 60% 20160
refresh_pattern
ftp://ftp.nai.com/ 300 60% 20160
refresh_pattern . 300 50% 4320
negative_ttl 5 minutes
positive_dns_ttl 24 hours
negative_dns_ttl 1 minute
cache_mgr
fanthom3@yahoo.com
cache_mem 32 MB
maximum_object_size 20 MB
cache_replacement_policy heap LFUDA
cache_swap_low 90
cache_swap_high 95
maximum_object_size_in_memory 50 KB
logfile_rotate 10
memory_pools off
quick_abort_min 0 KB
quick_abort_max 0 KB
log_icp_queries off
client_db off
half_closed_clients off
pid_filename /var/run/squid.pid
cache_log /dev/null
cache_store_log /dev/null
acl manager proto cache_object
#access_log /var/log/squid/access.log squid
acl lan src 192.168.11.0/24
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny to_localhost
http_access allow localhost
http_access allow lan
http_access deny all
icp_access allow lan
http_reply_access allow lan
visible_hostname Masoud
logfile_rotate 2
strip_query_terms off
cache_effective_user squid