SQUID UBUNTU

 Sudo apt update

Sudo apt upgrade

 

 

# Recommended minimum configuration:

 

# Define ACLs for local network

acl manager proto cache_object

acl localhost src 127.0.0.1/32

acl to_localhost dst 127.0.0.0/8 0.0.0.0/32

acl localnet src 192.168.32.0/24  # Adjust this to match your local network range

acl SSL_ports port 443

acl Safe_ports port 80            # http

acl Safe_ports port 21            # ftp

acl Safe_ports port 443           # https

acl Safe_ports port 1025-65535    # unregistered ports

acl Safe_ports port 280           # http-mgmt

acl Safe_ports port 488           # gss-http

acl Safe_ports port 591           # filemaker

acl Safe_ports port 777           # multiling http

acl SSL_ports port 9001           # webmin

acl CONNECT method CONNECT

 

# Allow local network and localhost access

http_access allow manager localhost

http_access deny manager

http_access deny !Safe_ports

http_access deny CONNECT !SSL_ports

http_access allow localhost

http_access allow localnet

http_access deny all

 

# Define the port Squid listens on

http_port 3128

 

# Disable forwarded_for for privacy

forwarded_for off

 

# Request header access rules

request_header_access Allow allow all

request_header_access Authorization allow all

request_header_access Proxy-Authorization allow all

request_header_access Proxy-Authenticate allow all

request_header_access Cache-Control allow all

request_header_access Content-Encoding allow all

request_header_access Content-Length allow all

request_header_access Content-Type allow all

request_header_access Date allow all

request_header_access Expires allow all

request_header_access Host allow all

request_header_access If-Modified-Since allow all

request_header_access Last-Modified allow all

request_header_access Location allow all

request_header_access Pragma allow all

request_header_access Accept allow all

request_header_access Accept-Charset allow all

request_header_access Accept-Encoding allow all

request_header_access Accept-Language allow all

request_header_access Content-Language allow all

request_header_access Mime-Version allow all

request_header_access Retry-After allow all

request_header_access Title allow all

request_header_access Connection allow all

request_header_access Proxy-Connection allow all

request_header_access User-Agent allow all

request_header_access Cookie allow all

request_header_access All deny all

 

# Set visible hostname

visible_hostname dominio101.local