acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECTacl localnet src "/usr/local/etc/squid/clients.txt"
acl ban_ext url_regex linkexch banpics \.flv$ \.rec$ \.mp3$ us\.yimg\.com[\./\ad[s]
acl video rep_mime_type -i ^video/
acl audio rep_mime_type -i ^audio/
acl reklama url_regex -i "/usr/local/etc/squid/banned"
acl unbanned url_regex -i "/usr/local/etc/squid/unbanned"
acl our_bans url_regex -i "/usr/local/etc/squid/our_bans"
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny to_localhost
http_access deny ban_ext
http_access deny reklama
http_access deny our_bans
http_access allow unbanned
http_reply_access deny video
http_reply_access deny audio
http_access allow localnet
http_access allow localhost
# And finally deny all other access to this proxy
http_access deny all
tcp_outgoing_address xx.xx.xx.xx localnet
http_port 3128 transparent
hierarchy_stoplist cgi-bin ?
cache_mem 0 MB
maximum_object_size 0 MB
maximum_object_size_in_memory 0 KB
cache_dir null /tmp
no_cache deny all
access_log /var/log/squid/access.log squid
cache_log /var/log/squid/cache.log
cache_store_log none
log_ip_on_direct on
strip_query_terms off
logfile_rotate 7