zoukankan      html  css  js  c++  java

  • squid和stunnel客户端 -----配置

    squid  配置文件

    #acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
    #acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
    acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
    #acl localnet src 192.168.170.0/24 # RFC1918 possible internal network
    #acl localnet src fc00::/7 # RFC 4193 local private network range
    #acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines
    #acl localnet src 192.168.40.35/32
    acl SSL_ports port 443
    acl Safe_ports port 80 # http
    acl Safe_ports port 21 # ftp
    acl Safe_ports port 443 # https
    acl Safe_ports port 70 # gopher
    acl Safe_ports port 210 # wais
    acl Safe_ports port 1025-65535 # unregistered ports
    acl Safe_ports port 280 # http-mgmt
    acl Safe_ports port 488 # gss-http
    acl Safe_ports port 591 # filemaker
    acl Safe_ports port 777 # multiling http
    acl CONNECT method CONNECT

    auth_param basic program /usr/lib64/squid/basic_ncsa_auth /etc/squid/passwd
    auth_param basic children 5
    auth_param basic mima
    auth_param basic realm "Welcome to proxy web server"
    auth_param basic credentialsttl 2 hours
    acl lookwest proxy_auth REQUIRED

    http_access allow lookwest
    http_access deny !Safe_ports
    http_access deny CONNECT !SSL_ports
    http_access allow localhost manager
    http_access deny manager
    http_access allow localnet
    http_access allow localhost

    http_access allow all
    http_port 3128

    coredump_dir /var/spool/squid
    cache_dir ufs /var/spool/squid 100 16 256
    refresh_pattern ^ftp: 1440 20% 10080
    refresh_pattern ^gopher: 1440 0% 1440
    refresh_pattern -i (/cgi-bin/|?) 0 0% 0
    refresh_pattern . 0 20% 4320
    cache_mem 99 MB

    maximum_object_size 20 MB
    maximum_object_size_in_memory 20 MB
    cache_swap_low 90
    cache_swap_high 95

    stunnel 客户端配置文件

    cert = /etc/stunnel/stunnel.pem
    socket = l:TCP_NODELAY=1
    socket = r:TCP_NODELAY=1
    verify = 2
    CAfile = /etc/stunnel/stunnel.pem
    client=yes
    #setuid = web
    #setgid = web
    compression = zlib
    ciphers = AES256-SHA
    delay = no
    failover = prio
    verify = 2
    #options = -NO_SSLv2
    #sslVersion = TLSv2
    options = DONT_INSERT_EMPTY_FRAGMENTS
    options = SINGLE_DH_USE
    fips = no
    [sproxy]
    accept = 0.0.0.0:33101
    #connect = 1.1.1.1
    connect = 1.1.1.1:11233333
  • 相关阅读:
    os.environ()详解
    查看django setting 源码
    FBV or CBV django settings 源码 模板层语法 摸板的继承 摸板的导入
    jq
    centos安装docker
    idea mapper报红解决
    Method has too many Body parameters
    Gradle安装配置
    itext生成PDF报错java.io.IOException: The document has no pages
    数字千分位
  • 原文地址:https://www.cnblogs.com/han1094/p/7800293.html
Copyright © 2011-2022 走看看