Squid Untuk Windows
Artikel kali ini saya akan share sebuah program caching yang bernama squid. squid yang saya share ini khusus saya compile dari source nya dengan ditambah bumbu – bumbu agar menyamai kemampuan saudaranya yaitu lusca (konfigurasi refresh pattern lusca yang aggressive dengan penambahan bumbu juga bisa di pakai di squid ini) dan bisa berjalan di lingkungan windows, ketika pembuatan artikel ini yang telah di test adalah windows xp dan windows 7 64bit dengan UAC Off. namun jika ingin memakai alternatif yang sudah jadi dan tinggal pakai silakan lihat langkah selanjutnya.
**Alternatif lain jika tidak ingin melakukan langkah di bawah silakan download installer yang telah jadi di link berikut http://www.comstuff.net/showthread.php?t=12
kelebihannya adalah :
new engine support XP – Win8.1 (x32 and x64).
latest storeurl.exe (07092014).
adsblock (ads image, html, popup).
adsblock updater menu.
unbound install included.
force youtube 240p.
bypass dns blocking from ISP
untuk link alternatif diatas jika ingin menggunakan alternatif konfigurasi silakan menggunakan konfigurasi berikut
(squid.conf) download
#####################################################
### CORE AND COMMON SQUID CONFIG ###
### Created in April 17 September 2014 ###
### techshoot.org ###
#####################################################
# default listen port 8000 with transparent mode,
# change properly with your own port
http_port 8000 transparent
# http1.1 handling
server_http11 on
# cache manager name
cache_mgr techshoot
# remove http-header "FORWARDER-FOR" to client that connected through squid
forwarded_for delete
# name of squid server
visible_hostname techshoot
# caching option (memory, directory,)
cache_mem 8 MB
cache_dir aufs D:/luscacache 4200 8 256
coredump_dir D:/luscacache
httpd_suppress_version_string on
acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
upgrade_http0.9 deny shoutcast
update_headers off
max_filedescriptors 2048
acl apache rep_header Server ^Apache
acl nginx rep_header Server ^nginx
broken_vary_encoding allow apache
broken_vary_encoding allow nginx
minimum_object_size 0 bytes
maximum_object_size 1 GB
maximum_object_size_in_memory 512 KB
store_avg_object_size 13 KB
offline_mode off
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA
client_persistent_connections off
server_persistent_connections on
windows_ipaddrchangemonitor off
request_timeout 30 seconds
pconn_timeout 15 seconds
negative_dns_ttl 60 seconds
positive_dns_ttl 6 hours
client_lifetime 6 hours
read_timeout 30 minutes
shutdown_lifetime 10 seconds
uri_whitespace strip
negative_ttl 30 seconds
half_closed_clients off
strip_query_terms off
quick_abort_min 128 KB
quick_abort_max 512 KB
quick_abort_pct 90
vary_ignore_expire on
cache_swap_high 99
cache_swap_low 98
fqdncache_size 16384
ipcache_size 4096
ipcache_low 98
ipcache_high 99
reload_into_ims on
pipeline_prefetch on
read_ahead_gap 32 KB
##############################################
############# CORE AND COMMON ################
##############################################
##############################################
### ADSBLOCKING ###
##############################################
acl safeuri url_regex -i th30nly\.indolini\.org
http_access allow safeuri
acl gaHack url_regex -i google-analytics\.com\/ga\.js
acl gaHack url_regex -i google-analytics\.com\/analytics\.js
acl ytHack url_regex -i google\.com\/js\/bg\/.*\.js
deny_info http://lusca.indolini.org/gahack.js? gaHack
deny_info http://lusca.indolini.org/yt.js? ytHack
http_access deny gaHack
http_access deny ytHack
acl popads url_regex -i "C:/squid/etc/popads.block"
deny_info http://lusca.indolini.org/popkiller.html popads
http_access deny popads
acl jstrigger url_regex -i (\.[^\.\-]*?\..*?)\/(.*)\.([^\/\?\&][js])((\?|\%).*)?$
acl advertise url_regex -i "C:/squid/etc/ads.block"
deny_info http://lusca.indolini.org/empty.js jstrigger
deny_info http://lusca.indolini.org/fill.png advertise
http_access deny advertise jstrigger
http_access deny advertise
##############################################
########### END OF ADSBLOCKING ###############
##############################################
##############################################
### DNS OPTION ###
##############################################
#dns_defnames on
## dns cache to localhost if using unbound
dns_nameservers 127.0.0.1 8.8.8.8 8.8.4.4
hosts_file c:/windows/system32/drivers/etc/hosts
########### END OF DNS OPTION ################
##############################################
### LOGING OPTION ###
##############################################
access_log D:/luscacache/access.log
cache_store_log none
cache_log D:/luscacache/cache.log
logfile_rotate 1
log_ip_on_direct off
log_icp_queries off
buffered_logs off
##############################################
########### END OF LOG OPTION ################
##############################################
##############################################
### ACL DEFINITION ###
##############################################
acl all src 0.0.0.0/0.0.0.0
acl localNet src 192.168.0.0/24 192.168.1.0/24 192.168.10.0/24 192.168.100.0/24
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl PURGE method PURGE
# Yahoo! Messenger
acl ym dstdomain .messenger.yahoo.com .psq.yahoo.com
acl ym dstdomain .us.il.yimg.com .msg.yahoo.com .pager.yahoo.com
acl ym dstdomain .rareedge.com .ytunnelpro.com .chat.yahoo.com
acl ym dstdomain .voice.yahoo.com
acl ymregex url_regex yupdater.yim ymsgr myspaceim
# Other protocols Yahoo!Messenger uses ??
acl ym dstdomain .skype.com .imvu.com
##############################################
### LUSCA SPECIFIC CONFIGURATION ###
##############################################
# define ACL not to cache
acl dontcache url_regex -i \/landing\.js\?.*
acl dontcache url_regex -i \/loading\.swf\?.*
acl dontcache url_regex -i loader\.swf
acl dontcache url_regex ^http://file.pb.gemscool.com\/.*\.(ui|dat)(\?.*|)
acl dontcache url_regex ^http://patch\..*\/.*\.(txt|ini|list|cfg|xml|dat|cfg\.iop)(\?.*|)
acl dontcache url_regex -i .*patch.*\/.*\.(txt|ini|list|cfg|xml|dat|cfg\.iop)(\?.*|)
acl dontcache url_regex ^http://file.pb.gemscool.com/hackshield/PatchSet/noupdate.ui(\?.*|)
acl dontcache url_regex \/(watch\?|get_video\?|videodownload\?|videoplayback\?(.*&begin|.*&start))
acl dontcache url_regex \/(wuident|w?redir|v\dcontrols|trustedr).*
acl dontcache url_regex -i ^http:\/\/update\.netmarble\.co\.id\/Elsword\/Patch.*\.exe
# and deny all about it
storeurl_access deny dontcache
cache deny dontcache
# end of not to cache
acl store_rewrite_list_regex url_regex ^http:\/\/([\d\.]*|.*)\/(key|data|buffer|speed|reftag).*\/xh\/(.*\.flv(\?.*|))
acl store_rewrite_list_regex url_regex ^http:\/\/199\.91\.15\d\.\d*\/\w{12}\/(\w*)\/(.*)
acl store_rewrite_list_regex url_regex ^http:\/\/205\.196\.12[0-3]\.\d*\/\w{12}\/(\w*)\/(.*)
#youtube specific
acl store_rewrite_list_yt url_regex ^http:\/\/([0-9.]{4}|.*\.youtube\.com|.*\.googlevideo\.com|.*\.video\.google\.com)\/(get_video\?|videodownload\?|videoplayback.*id).*
acl store_yt_id url_regex ^http:\/\/([0-9.]{4}|.*\.youtube\.com|.*\.googlevideo\.com|.*\.video\.google\.com)\/stream_204\?.*docid=([^\&%]*)&.*
acl store_yt_id url_regex ^http:\/\/([0-9.]{4}|.*\.youtube\.com|.*\.googlevideo\.com|.*\.video\.google\.com)\/player_204\?.*v=([^\&%]*)&.*
acl store_yt_id url_regex ^http:\/\/([0-9.]{4}|.*\.youtube\.com|.*\.googlevideo\.com|.*\.video\.google\.com)\/ptracking\?.*video_id=([^\&%]*)&.*
acl store_yt_cpn url_regex ^http:\/\/([0-9.]{4}|.*\.youtube\.com|.*\.googlevideo\.com|.*\.video\.google\.com)\/(stream_204|player_204|ptracking)\?.*cpn=.*
#youtube specific
acl store_rewrite_list urlpath_regex speedtest\.
acl store_rewrite_list urlpath_regex .*\/speedtest\/.*\.(jpg|txt)
acl store_rewrite_list urlpath_regex [a-zA-Z]{2}[0-9]*\.4shared\.com\/download\/
acl dontrewrite_domain url_regex -i ^http:\/\/([a-z]+[0-9]+([a-z0-9\-]*)?)\.(wordpress|blogspot)\.com
acl store_rewrite_list_domain_CDN url_regex -i ^http:\/\/([a-z]+-?[0-9]+([a-z0-9\-]*)?)\.[a-z0-9\-]*\.[a-z]*
acl store_rewrite_list_domain url_regex ^http:\/\/([a-zA-Z-]+[0-9-]+)\.[A-Za-z]*\.[A-Za-z]*
acl store_rewrite_list_domain url_regex (([a-z]{1,2}[0-9]{1,3})|([0-9]{1,3}[a-z]{1,2}))\.[a-z]*[0-9]?\.[a-z]{3}
acl store_rewrite_list urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|wm(a|v)|3gp|mp(4|3)|m4(a|v)|mov|rm|rmvb|exe|msi|dmg|zip|on2|mar|rar|cab|swf|ipa|apk|ipsw|ts)(\?.*|$)
acl dontstore url_regex ^http:\/\/(([\d\w-]*(\.[^\.\-]*?\..*?))(\/\mosalsal\/[\d]{4}\/.*\/)(.*\.flv))\?start.*
acl dontstore url_regex redbot\.org \.php
acl dontstore url_regex \.(aspx|php)\?
acl dontstore url_regex goldprice\.org\/NewCharts\/gold\/images\/.*\.png
acl dontstore url_regex google\.co(m|\.[a-z]{2})\/complete\/search\?
acl dontstore url_regex redirector\.([0-9.]{4}|.*\.youtube\.com|.*\.googlevideo\.com|.*\.video\.google\.com)\/(get_video\?|videodownload\?|videoplayback.*id|get_video_info\?|ptracking\?|player_204\?|stream_204\?).*
acl headmethod method HEAD
acl getmethod method GET
acl postmethod method POST
storeurl_access deny !getmethod
storeurl_access deny dontstore
storeurl_access deny dontrewrite_domain
storeurl_access allow store_rewrite_list_yt
storeurl_access allow store_yt_id store_yt_cpn
storeurl_access allow store_rewrite_list_domain_CDN
storeurl_access allow store_rewrite_list
storeurl_access allow store_rewrite_list_regex
storeurl_access allow store_rewrite_list_domain
storeurl_access deny all
##############################################
############ REWRITE FEATURE #############
##############################################
storeurl_rewrite_program C:/squid/etc/storeurl.exe
storeurl_rewrite_children 5
storeurl_rewrite_concurrency 10
########### END OF REWRITE FEATURE ###########
##############################################
### END LUSCA SPECIFIC CONFIGURATION ###
##############################################
##############################################
### REFRESH PATTERN OPTION ###
##############################################
refresh_pattern ^http:\/\/.*\.[a-z]\.pack\.google\.com\/(.*) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod store-stale reload-into-ims negative-ttl=0
refresh_pattern ^http:\/\/([0-9.]{4}|.*\.android\.clients\.google\.com)\/market\/GetBinary\/([\w\.]*)\/([\d\:]*)\?(.*) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod store-stale reload-into-ims negative-ttl=0
refresh_pattern (watch\?|get_video\?|videoplayback\?|videodownload\?|\.flv?|__utm\.gif\?) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod store-stale reload-into-ims negative-ttl=0
refresh_pattern ^http:\/\/[\w\d\-\.]*\.4shared\..*\.(jp(e?g|e|2)|gif|pn[pg]|bm?|tiff?|ico|swf|css|js)(\?.*|) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod store-stale reload-into-ims negative-ttl=0
refresh_pattern -i google\-analytics\.com.*gif 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern ^http:\/\/[a-z]+[0-9]\.google\.co(m|\.id) 129600 99% 129600 override-expire ignore-reload ignore-private negative-ttl=10080 store-stale
refresh_pattern (photobucket|overclockersclub|pbsrc|flickr|gravatar|(tw|y|yt)img)\.com.*\/ 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-private ignore-auth ignore-no-store store-stale
refresh_pattern speedtest.*\.(jp(e?g|e|2)|tiff?|bmp|gif|png|swf|txt|js)(\?.*|) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod store-stale reload-into-ims negative-ttl=0
refresh_pattern code.google.com.*(svn|download) 86400 50% 129600 reload-into-ims
refresh_pattern (zynga|zgncdn|ninjasaga|mafiawars|cityville|crowdstar|farmville|spilcdn|agame|popcap)\.com.*\/ 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-private ignore-auth ignore-no-store store-stale
#luscaforwindows
refresh_pattern imeem.*\.flv 0 0% 0 override-lastmod override-expire store-stale
refresh_pattern (gstatic|diggstatic)\.com/.* 1440 99% 14400 override-expire ignore-reload ignore-private
refresh_pattern \.(adtology|etology)\? 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern brazzers\? 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern galleries\.video(\?|sz) 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern vid\.akm\.dailymotion\.com.*\.on2\? 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod store-stale reload-into-ims negative-ttl=0
refresh_pattern \.(ico|video-stats) 129600 99% 129600 override-expire override-lastmod ignore-reload ignore-no-cache ignore-private ignore-auth ignore-no-store negative-ttl=10080 store-stale
refresh_pattern \.wikimapia\.org\/? 1440 99% 14400 override-expire override-lastmod ignore-reload ignore-private
refresh_pattern ^http:\/\/image|images|pics|newopenx|openx|thumbs[0-9]\. 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-private ignore-auth ignore-no-store store-stale
# ANTI VIRUS
refresh_pattern -i \.nup 10800 99% 10800 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern -i avast.com.*\.vpx 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern -i guru.avg.com/.*\.(bin) 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern -i (avgate|avira).*(idx|gz)$ 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern -i kaspersky.*\.avc$ 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern -i kaspersky 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern -i update.nai.com/.*\.(gem|zip|mcs) 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern ^http:\/\/liveupdate.symantecliveupdate.com.*\(zip) 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
# WINDOWS UPDATE
refresh_pattern -i windowsupdate.com/.*\.(cab|exe|psf|dsft|ms[i|u|f]|asf|wm[v|a]|dat|zip)(\?.*|) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod store-stale reload-into-ims negative-ttl=0
refresh_pattern -i update.microsoft.com/.*\.(cab|exe|psf|dsft|ms[i|u|f]|asf|wm[v|a]|dat|zip)(\?.*|) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod store-stale reload-into-ims negative-ttl=0
refresh_pattern -i download.microsoft.com/.*\.(cab|exe|psf|dsft|ms[i|u|f]|asf|wm[v|a]|dat|zip)(\?.*|) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod store-stale reload-into-ims negative-ttl=0
#common refresh pattern
refresh_pattern -i \.(gif|png|jp(e?g|e|2|g|eg)|ico|bmp|tif|tiff?)(\?.*|$) 10080 90% 43200 override-expire ignore-no-cache override-lastmod ignore-no-store reload-into-ims
refresh_pattern -i \.(7z|arj|bin|bz2|cab|deb|dll|exe|gz|inc|iso|jar|lha|ms(i|p|u)|rar|rpm|tar|tgz|zip|rtp|rpz|nui|kom|stg|pak|sup|nzp|npz|iop|nth|psd|sis|apk)(\?.*|$) 43200 95% 432000 override-expire ignore-no-cache ignore-private override-lastmod ignore-no-store reload-into-ims
refresh_pattern -i \.(class|doc|docx|pdf|pps|ppt|ppsx|pptx|ps|rtx|txt|wpl|xls|xlsx)(\?.*|$) 10080 95% 43200 override-expire ignore-no-cache override-lastmod ignore-no-store reload-into-ims
refresh_pattern -i \.(3gp|ac4|agx|au|avi|axd|cbr|cbt|cbz|dat|divx|flv|hqx|mid|mk(a|v)|mov|mp(1|2|3|4|e|eg|g)|og(a|g|v)|qt|ra|ram|rm|swf|wa(v|x)|wm(a|v|x)|x-flv|webm)(\?.*|$) 43200 95% 432000 override-expire ignore-no-cache override-lastmod ignore-no-store reload-into-ims
refresh_pattern -i \.index.(html|htm)(\?.*|$) 0 40% 10080
refresh_pattern -i \.(html|htm|css|js)(\?.*|$) 1440 40% 40320
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern ^ftp: 10080 95% 129600 override-lastmod reload-into-ims store-stale
refresh_pattern . 0 0% 4320
##############################################
####### END OF REFRESH PATTERN OPTION ########
##############################################
##############################################
### ACL RULEZ ###
##############################################
http_access allow PURGE manager localhost
http_access allow ym
http_access allow localhost
http_access allow localNet
http_access deny PURGE
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT
http_access deny CONNECT !SSL_ports
http_access deny all
http_reply_access allow all
icp_access allow all
################ END ACL RULEZ ###############
berbeda dengan squid yang saya compile dibawah (port 3128), installer ini defaultnya menggunakan port 8000 namun bisa di edit jika ingin memakai port 3128 (disamakan dengan port squid)
namun jika tetap ingin melakukan secara manual berikut langkahnya :
Download paket yang udah di sediakan melalui link berikut http://www.mediafire.com/download/s06w7aqaavfqkao/squid-30082014.7z dimohon untuk yang mendownload agar tidak melakukan mirroring terhadap file ini. jika nantinya tidak ada silakan leave comment agar dilakukan reupload.
lalu downlod storeurl.exe (dengan file ini kita tidak perlu menginstall perl software) yang udah di sediakan melalui link berikut http://www.mediafire.com/download/okxtvp0i8byx6gk/storeurl-30082014.7z dimohon untuk yang mendownload agar tidak melakukan mirroring terhadap file ini. jika nantinya tidak ada silakan leave comment agar dilakukan reupload.
Extrak file squid-30082014.7z di drive C sehingga menjadi C:\squid yang didalamnya ada folder bin,etc,libexec,sbin,share,var
Extrak file storeurl-30082014.7z di folder C:\squid\etc sehingga menjadi C:\squid\etc\storeurl.exe
Save as squid.conf dibawah ini (anda di beri kebebasan untuk mengganti, menambah maupun mengurangi ini dari squid.conf) ke folder C:\squid\etc namun sebelum mendownload anda harus pahami dulu beberapa bagian yang mungkin akan anda edit menyesuaikan kebutuhan anda
Buatlah folder youtube (jika belum ada) di C:/squid/var/logs
drive yang digunakan untuk cache log squid dalam artikel ini adalah drive D dan jika ingin diganti silakan mengganti bagian cache_dir,coredump_dir,access_log,cache_log di squid.conf.
di dalam artikel ini besarnya squid cache adalah 6 Gb (6000) silakan disesuaikan dengan kondisi masing – masing dan mungkin link cache dir di squid dapat membantu
(squid.conf) download
#####################################################
### CORE AND COMMON SQUID CONFIG ###
### Created in April 09 September 2014 ###
### techshoot.org ###
#####################################################
############################
## Port Configuration ##
############################
http_port 3128 transparent
server_http11 on
#######################################
# caching option (memory, directory,) #
#######################################
cache_mem 8 MB
cache_dir aufs D:/squidcache 4200 8 256
coredump_dir D:/squidcache
maximum_object_size 512 MB
maximum_object_size_in_memory 512 KB
minimum_object_size 0 KB
store_avg_object_size 13 KB
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA
########################
# name of squid server #
########################
visible_hostname techshoot
cache_mgr techshoot
##########################
## Cache Options ##
##########################
netdb_filename none
shutdown_lifetime 10 seconds
half_closed_clients off
windows_ipaddrchangemonitor off
forwarded_for off
httpd_suppress_version_string on
acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
upgrade_http0.9 deny shoutcast
update_headers off
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
request_timeout 1 minute
pconn_timeout 15 seconds
quick_abort_min 128 KB
quick_abort_max 512 KB
quick_abort_pct 90
vary_ignore_expire on
reload_into_ims on
memory_pools off
pipeline_prefetch on
strip_query_terms off
client_db off
max_filedescriptors 2048
offline_mode off
client_persistent_connections off
negative_ttl 30 seconds
#############################
# Cache_peer Options #
#############################
#cache_peer 127.0.0.1 parent 8888 0 no-query no-digest default
##############################################
### DNS OPTION ###
##############################################
dns_nameservers 8.8.8.8 8.8.4.4
hosts_file C:/Windows/System32/drivers/etc/hosts
########### END OF DNS OPTION ################
##############################################
### LOGING OPTION ###
##############################################
logformat combined %>a %ui %un [%tl] "%rm %ru HTTP/%rv" %Hs %<st "%{Referer}>h" "%{User-Agent}>h" %Ss:%Sh
access_log D:/squidcache/access.log
cache_log D:/squidcache/cache.log
cache_store_log none
logfile_rotate 1
log_icp_queries off
log_ip_on_direct off
########### END OF LOG OPTION ################
##############################################
### ACL DEFINITION ###
##############################################
acl all src all
acl localNet src 192.168.0.0/24 192.168.1.0/24 192.168.10.0/24 192.168.100.0/24 192.168.56.0/24
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 21
acl Safe_ports port 21 # ftp
acl Safe_ports port 70 # gopher
acl Safe_ports port 80 # http
acl Safe_ports port 210 # wais
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 443 # https
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 1025-65535 # unregistered ports
acl PURGE method PURGE
acl ftp proto FTP
acl manager proto cache_object
# Yahoo! Messenger
acl ym dstdomain .messenger.yahoo.com .psq.yahoo.com
acl ym dstdomain .us.il.yimg.com .msg.yahoo.com .pager.yahoo.com
acl ym dstdomain .rareedge.com .ytunnelpro.com .chat.yahoo.com
acl ym dstdomain .voice.yahoo.com
acl ymregex url_regex yupdater.yim ymsgr myspaceim
# Other protocols Yahoo!Messenger uses ??
acl ym dstdomain .skype.com .imvu.com
# REWRITE FEATURE
storeurl_rewrite_program C:/squid/etc/storeurl.exe
storeurl_rewrite_children 5
storeurl_rewrite_concurrency 10
# END OF REWRITE FEATURE
##############################################
# Block Advertising #
##############################################
acl ads url_regex -i .youtube\.com\/ad_frame?
acl ads url_regex -i .(s|s[0-90-9])\.youtube\.com
acl ads url_regex -i .googlesyndication\.com
acl ads url_regex -i .doubleclick\.net
acl ads url_regex -i ^http:\/\/googleads\.*
acl ads url_regex -i ^http:\/\/(ad|ads|ads[0-90-9]|ads\d|kad|a[b|d]|ad\d|adserver|adsbox)\.[a-z0-9]*\.[a-z][a-z]*
acl ads url_regex -i ^http:\/\/(openx)\.[a-z0-9]*\.[a-z][a-z]*
acl ads url_regex -i ^http:\/\/[a-z0-9]*\.openx\.net\/
acl ads url_regex -i ^http:\/\/[a-z0-9]*\.u-ad\.info\/
http_access deny ads
http_reply_access deny ads
deny_info http://lusca.indolini.org/fill.png ads
################### END BLOCK ADVERTISING ######################
# for ALL Youtube ( range & non range )
acl youtube url_regex -i youtube.*(ptracking|stream_204|player_204|gen_204).*$
acl youtube url_regex -i (youtube|googlevideo)\.com\/(get_video|videoplayback|videoplay).*$
# Video Youtube
acl dontrewrite url_regex redbot\.org (get_video|videoplayback\?id|videoplayback.*id).*begin\=[1-9][0-9]*
acl store_rewrite_list url_regex -i (youtube|google).*(videoplayback|liveplay)
# FACEBOOK
acl dontrewrite url_regex -i s\-platform\.ak\.fbcdn\.net
acl store_rewrite_list url_regex -i fbcdn.*net
#Warn Wordpress dan blogspot
acl dontrewrite_domain url_regex -i ^http:\/\/([a-z]+[0-9]+([a-z0-9\-]*)?)\.(wordpress|blogspot)\.com
#Google Analytics
acl store_rewrite_list url_regex -i www\.google\-analytics\.com
#Google Video
acl store_rewrite_list url_regex -i video\.google\.com\/ThumbnailServer
# Aplikasi Android
acl dontrewrite url_regex redirector\.c\.android\.clients\.google\.com
acl store_rewrite_list url_regex -i c\.android\.clients\.google\.com
#Speedtest
acl store_rewrite_list url_regex -i \/speedtest\/.*(jpg|txt|png|swf)
#Porn Movies
acl store_rewrite_list url_regex -i \.xvideos\.com\/.*(3gp|mpg|flv|mp4)
#ACL CDN
acl store_rewrite_list_domain_CDN url_regex -i ^http:\/\/([a-z]+-?[0-9]+([a-z0-9\-]*)?)\.[a-z0-9\-]*\.[a-z]*
acl store_rewrite_list_domain url_regex ^http:\/\/([a-zA-Z-]+[0-9-]+)\.[A-Za-z]*\.[A-Za-z]*
acl store_rewrite_list_domain url_regex (([a-z]{1,2}[0-9]{1,3})|([0-9]{1,3}[a-z]{1,2}))\.[a-z]*[0-9]?\.[a-z]{3}
acl store_rewrite_list_path urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|avc|zip|mp3|3gp|rar|on2|mar|krf|exe)$
acl CONNECT method CONNECT
acl getmethod method GET
#
#
storeurl_access deny dontrewrite_domain
storeurl_access allow youtube
storeurl_access deny dontrewrite
storeurl_access deny !getmethod
storeurl_access allow store_rewrite_list_domain_CDN
storeurl_access allow store_rewrite_list
storeurl_access allow store_rewrite_list_domain
storeurl_access allow store_rewrite_list_path
storeurl_access deny all
## END STORE REWRITE
########### END OF ACL DEFINITION ################
##############################################
### NEW REFRESH PATTERN OPTION ###
##############################################
#Video Youtube
refresh_pattern -i (youtube|google).*(videoplayback|liveplay) 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
#images facebook
refresh_pattern -i fbcdn.*net 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
#Google Analytics
refresh_pattern -i google\-analytics\.com.*gif 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
#Google Video
refresh_pattern -i video\.google\.com\/ThumbnailServer 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
#Apllikasi Android
refresh_pattern -i c\.android\.clients\.google\.com 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
# APPS APPLE
refresh_pattern -i phobos\.apple\.com.*ipa 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
#Speedtest
refresh_pattern -i \/speedtest\/.*(jpg|txt|png|swf)) 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
#Porn Movies
refresh_pattern -i \.xvideos\.com\/.*(3gp|mpg|flv|mp4) 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i \/xh.*(3gp|mpg|flv|mp4) 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
#GAME
refresh_pattern -i (cgi-bin|mrtg|graph) 0 0% 0
refresh_pattern -i \.(php|lst|ui|ini|list)$ 0 0% 0
refresh_pattern (update.ini|Update.ini|version.list|Version.list|update.1st|update.exe|autoup.exe) 0 0% 0
refresh_pattern (hackshield|nprotect) 240 100% 420 override-expire override-lastmod reload-into-ims
refresh_pattern \.gemscool.com.*\.(exe|dll|cab|zip|iop|npz|swf)$ 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
refresh_pattern \.crossfire.web.id.*\.(cab|zip|exe|rar|dat|swf)$ 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
refresh_pattern \.cabalonline.co.id.*\.(cab|zip|exe|rar|dat|swf) 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
refresh_pattern \.megaxus.com.*\.(cab|zip|exe|rar|dat|swf) 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
refresh_pattern \.lytogame.com.*\.(cab|zip|exe|rar|dat|swf) 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
refresh_pattern ((25[0-5]|2[0-4][0-9]|1[0-9]{2}|[0-9]{1,2})\.){3}(25[0-5]|2[0-4][0-9]|1[0-9]{2}|[0-9]{1,2}).*\.(pak|exe|zip|kom|stg|npz|swf)$ 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
#IIX DOWNLOAD
refresh_pattern ^http:\/\/\.www[0-9][0-9]\.indowebster\.com\/(.*)(mp3|rar|zip|flv|wmv|3gp|mp(4|3)|exe|msi|zip) 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale ignore-auth
refresh_pattern \.gstatic\.com/images\? 1440 99% 14400 override-expire override-lastmod ignore-reload ignore-private ignore-must-revalidate
refresh_pattern \.(akamaihd|edgecastcdn|spilcdn|zgncdn|(tw|y|yt)img)\.com.*\.(jp(e?g|e|2)|gif|png|swf|flv|mp(3|4)) 1440 99% 14400 override-expire override-lastmod ignore-reload ignore-private
refresh_pattern (gstatic|diggstatic)\.com/.* 1440 99% 14400 override-expire ignore-reload ignore-private
refresh_pattern (photobucket|pbsrc|flickr|yimg|ytimg|twimg|gravatar)\.com.*\.(jp(e?g|e|2)|gif|png|tiff?|bmp|swf|mp(4|3)) 1440 99% 14400 override-expire ignore-reload ignore-private
refresh_pattern (zynga|ninjasaga|mafiawars|cityville|farmville|crowdstar|spilcdn|agame|popcap)\.com/.* 1440 99% 14400 override-expire ignore-reload ignore-private
refresh_pattern ^http:\/\/images|image|img|pics|newopenx|openx|thumbs[0-9]\. 1440 99% 14400 override-expire ignore-reload ignore-private
refresh_pattern -i (livescore.com|goal.com|bobet) 0 50% 60
refresh_pattern .pixieimage\.com.*\.(jp(e?g|e|2)|gif|png|tiff?|bmp|swf|mp(4|3)) 1440 99% 14400 override-expire ignore-reload ignore-private ignore-reload override-lastmod reload-into-ims
refresh_pattern .blogspot\.com.*\.(jp(e?g|e|2)|gif|png|tiff?|bmp|swf|mp(4|3)) 1440 99% 14400 override-expire ignore-reload ignore-private ignore-reload reload-into-ims
refresh_pattern .multiply\.com.*\.(jp(e?g|e|2)|gif|png|tiff?|bmp|swf|mp(4|3)) 1440 99% 14400 override-expire ignore-reload ignore-private ignore-reload override-lastmod reload-into-ims
refresh_pattern .((pikawarnet\.com)|(blogspot\.com)|(pixieimage\.com)|(multiply\.com)).* 60 30% 240
refresh_pattern \.(ico|video-stats) 1440 99% 14400 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod ignore-must-revalidate negative-ttl=10080 store-stale
refresh_pattern ^http://((cbk|mt|khm|mlt|tbn)[0-9]?)\.google\.co(m|\.uk|\.id) 1440 99% 14400 override-expire override-lastmod ignore-reload ignore-private ignore-auth ignore-must-revalidate negative-ttl=10080 store-stale
refresh_pattern vid\.akm\.dailymotion\.com.*\.on2\? 1440 99% 14400 override-expire override-lastmod
refresh_pattern galleries\.video(\?|sz) 1440 99% 14400 override-expire ignore-reload ignore-must-revalidate ignore-private ignore-no-cache store-stale
refresh_pattern \.wikimapia\.org\/? 1440 99% 14400 override-expire override-lastmod ignore-reload ignore-private
refresh_pattern \.etology\? 1440 99% 14400 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern brazzers\? 1440 99% 14400 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern \.adtology\? 1440 99% 14400 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern ytimg\.com.*\.jpg 1440 99% 14400 override-expire ignore-reload store-stale
#sensitive site
refresh_pattern -i \.(sc-|dl-|ex-|mh-|dll|da-) 0 2% 50 reload-into-ims
refresh_pattern -i \.(mst|Xtp|iop)$ 0 50% 1440 reload-into-ims
refresh_pattern -i (index.php|autoup.exe|main.exe|xtrap.xt|autoupgrade.exe|update.exe|grandchase.exe|FSLauncher.exe|FreeStyle_Setup.exe|grandchase.exe|filelist.zip)$ 0 50% 1440
refresh_pattern -i (UpdaterModifier.exe|FreeStyle.exe|PBLauncher.exe|update.exe|NewLauncher.exe|NewAvalon.exe|hon.exe.zip|cabal.exe)$ 0 50% 1440
refresh_pattern -i (PointBlank.exe.zip|HSUpdate.exe.zip|PBConfig.exe.zip) 0 50% 1440
refresh_pattern -i (wks_avira-win32-en-pecl.info.gz|wks_avira10-win32-en-pecl.info.gz|servers.def.vpx)$ 0 50% 1440
refresh_pattern -i (setup.exe.gz|avscan.exe.gz|avguard.exe.gz|filelist.zip|AvaClient.exe) 0 50% 1440
#general
refresh_pattern -i \.(7z|arj|bin|bz2|cab|deb|dll|exe|gz|inc|iso|jar|lha|ms(i|p|u)|rar|rpm|tar|tgz|zip|rtp|rpz|nui|kom|stg|pak|sup|nzp|npz|iop|nth|psd|sis|apk)(\?.*|$) 10080 95% 43200 override-expire ignore-no-cache override-lastmod ignore-no-store reload-into-ims
refresh_pattern -i \.(class|doc|docx|pdf|pps|ppt|ppsx|pptx|ps|rtx|txt|wpl|xls|xlsx)(\?.*|$) 10080 95% 43200 override-expire ignore-no-cache override-lastmod ignore-no-store reload-into-ims
refresh_pattern -i \.(3gp|ac4|agx|au|avi|axd|cbr|cbt|cbz|dat|divx|flv|hqx)|mid|mk(a|v)|mov|mp(1|2|3|4|e|eg|g)|og(a|g|v)|qt|ra|ram|rm|swf|wa(v|x)|wm(a|v|x)|x-flv|webm)(\?.*|$) 10080 95% 43200 override-expire ignore-no-cache override-lastmod ignore-no-store reload-into-ims
refresh_pattern -i \.(gif|png|jp(e?g|e|2|g|eg)|ico|bmp|tif|tiff?)(\?.*|$) 10080 95% 43200 override-expire ignore-no-cache override-lastmod ignore-no-store reload-into-ims
refresh_pattern -i \.index.(html|htm)(\?.*|$) 0 40% 10080
refresh_pattern -i \.(html|htm|css|js)(\?.*|$) 1440 40% 40320
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
########### END OF REFRESH PATTERN OPTION ################
##############################################
### ACL RULEZ ###
##############################################
http_access allow PURGE manager localhost
http_access allow ym
http_access allow ftp
http_access allow localhost
http_access allow localNet
http_access deny PURGE
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny all
http_reply_access allow all
icp_access allow all
################ END ACL RULEZ ################
jika sudah edit environment variables anda untuk memasukkan path nya squid (cara ini sangat penting untuk dilakukan karena akan mempengaruhi langkah selanjutnya). caranya klik kanan my computer atau computer di start menu lalu klik properties klik advanced system settings dan klik environment variables dan pada system variables cari variable path lalu isi seperti berikut
1
;C:\squid\bin;C:\squid\sbin
jika sudah di OK saja.
langkah selanjutnya buka Command Prompt dengan cara start menu klik run dan ketik CMD
untuk mendaftarkannya squid agar menjadi service maka ketik command berikut di cmd tersebut
1
squid -i
dan masukkan command berikutnya agar squid tidak error ketika tidak ada koneksi
1
squid -O -DY
lalu untuk membuat directory squid maka ketik command berikut
1
squid -z
jika terdapat error silakan cek dengan perintah berikut dan nanti akan di beri cluenya yang error dimana
1
squid -k parse
jika tidak ada error langkah selanjutnya adalah melakukan start service squid
1
net start squid
sampai disini silakan cek file cache.log. seharusnya disana sudah ada keterangan start
beberapa perintah lainnya yang berguna dan yang mesti diingat ialah
Melakukan debugging apabila squid error tapi ga’ tau salah dimana, maka jalankan perintah ini
1
squid -d 1 D
perintah itu akan melakukan trace error nya ada di mana, jika sudah kopi seluruh hasilnya ke pastebin atau screenshoot hasil debuggingnya dan upload ke imagebam atau postimage lalu paste linknya kemari untuk dianalisa
mematikan squid
1
net stop squid
mengatur agar squid membaca ulang konfigurasi tanpa perlu melakukan restart service
1
squid -n squid -k reconfigure
untuk mendelete service squid yang telah diinstall (sebelumnya telah menginstall service dari paket squid ini)
1
squid -r
simple tools untuk monitoring performance squid
1
squidclient mgr:info
untuk mengecek website yang diakses melalui access.log yang bekerja secara realtime anda dapat mendownload tools yang bernama mtail di link berikut http://ophilipp.free.fr/op_tail.htm atau jika ingin tampilan log dengan warna mendekati ccze silakan memakai baretail di link berikut https://www.baremetalsoft.com/baretail/
petunjuk penggunaannya simple. tinggal arahkan saja ke file access.log, namun karena default type yang dibaca adalah .txt maka anda harus merubahnya ke all files
jika ada pertanyaan lebih lanjut silakan main saja ke forum berikut http://www.comstuff.net/showthread.php?t=12
NOTE: Bagi yang bermasalah dengan cache youtube, pastikan saat di tes tidak menggunakan addon ADBLOCK PLUS di browsernya. Jika Menggunakan addon Adblock Plus pastikan filter yang terpasang HANYA abpindo + easylist. jika ada filter selain itu kemungkinan ga’ tercache
Squid Untuk Windows
Langganan:
Posting Komentar (Atom)
1 komentar:
Are you looking to make cash from your websites or blogs with popunder advertisments?
If so, have you considered using PopCash?
Posting Komentar