This is my EXACT squid conf file. You will notice that I also have SquidGuard running. That is only to stop the Porn from entering our internet cafe. Squidguard is NOT needed for just bandwidth limiting. Also, you should copy the delay pools section to a template with the rest of your squid templates.
As with all scripts from the internet, Please check them before use, I will NOT be held responsible for your inability to read. It works for me.
#------------------------------------------------------------
# DO NOT MODIFY THIS FILE! It is updated automatically by the
# Mitel Networks server software. Instead, modify the source
# template in the /etc/e-smith/templates directory. For more
# information, see
http://www.e-smith.org/.
#
# copyright (C) 2001 Mitel Networks Corporation
#------------------------------------------------------------
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localsrc src 127.0.0.1 192.168.1.0/255.255.255.0
acl localdst dst 127.0.0.1 192.168.1.0/255.255.255.0
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535 980
acl CONNECT method CONNECT
acl webdav method PROPFIND TRACE PURGE PROPPATCH MKCOL COPY MOVE LOCK UNLOCK
cache_mgr support@xxxxxxxxx.com.au
ftp_user nobody@xxxxxx.com.au
http_access allow manager localsrc
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localsrc
http_access deny all
redirect_program /usr/local/bin/squidGuard
redirect_children 5
httpd_accel_host virtual
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
icp_access allow all
miss_access allow all
store_avg_object_size 3 KB
cache_mem 64 MB
maximum_object_size 6144 KB
minimum_object_size 1 KB
always_direct allow webdav
always_direct allow all
#######DELAY POOLS START##################
#not limit localnetwork d/l
acl magic_words1 url_regex -i 192.168 liveupdate symantec microsoft windows update
# these files get limited from net
acl magic_words2 url_regex -i .exe .vqf .tar.gz .gz .rpm .tar .zip .rar .ace .wmf .raw .wav .swf .wzs
#third delay pool - banned files
acl magic_words3 url_regex -i .mp3 .mpeg .mpg .wma .avi .bsp .mov .wad .mpe .wma .asf .iso .bin .qt .ram .rm .viv
#limit bandwidth at day not night
acl day time 08:00-23:00
#2 delay pools, different delay_class
delay_pools 3
#first delay pool
#no delay for lan
#first delay class of second type
delay_class 1 2
#-1/-1 means no limits
delay_parameters 1 -1/-1 -1/-1
#magic_words1:192.168 we have set before
delay_access 1 allow magic_words1
#second delay pool
#to delay magic_words2
delay_class 2 2
#third pool - banned
delay_class 3 2
# delay is in bytes;doesn't consider start/stop bits(modem)
#delay_parameters 2 value1/value2 value3/value4
#value1/2 whole network(total bw), 3/4 per ip
#d/l at val1 after d/l'd over value2
delay_parameters 2 9000/100000 3000/80000
delay_parameters 3 2/10 2/10
#we have set day to 08:00-23:00 before
delay_access 2 allow day
delay_access 2 deny !day
delay_access 2 allow magic_words2
delay_access 3 allow day
delay_access 3 deny !day
delay_access 3 allow magic_words3
######DELAY POOLS CONFIG END#############
Regards,
KegRaider.
5 Replies
3131 Views