squid-2.5.STABLE5 (2004-06-21)準備ちょっと古いですが、2.4.STABLE6からのアップデート。 アップデートするときの注意点(というよりハマったところ)は、次のとおり。
インストール% tar zxf squid-2.5.STABLE5.tar.gz % cd squid-2.5.STABLE5 % ./configure --prefix=/configure --prefix=/usr/local/squid --enable-snmp --enable-cachemgr-hostname --enable-default-err-language=Japanese % make all # make install # cp contrib/squid.rc /sbin/rc3.d/S99squid 設定ファイル(squid.conf)http_port 3128 icp_port 3130 cache_peer 親サーバ(not Squid) parent 8080 7 no-query cache_peer_domain 親サーバ(not Squid) !(親サーバを経由しないドメイン) acl QUERY urlpath_regex cgi-bin \? no_cache deny QUERY cache_mem 128 MB maximum_object_size 8192 KB cache_dir ufs /var/squid/cache 1600 16 256 cache_access_log /usr/local/squid/var/logs/access.log cache_log /usr/local/squid/var/logs/cache.log cache_store_log /usr/local/squid/var/logs/store.log pid_filename /usr/local/squid/logs/squid.pid # OPTIONS FOR EXTERNAL SUPPORT PROGRAMS # ----------------------------------------------------------------------------- ftp_user ftpuser@hyogo-dai.ac.jp # OPTIONS FOR TUNING THE CACHE # ----------------------------------------------------------------------------- refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern . 0 20% 4320 # TIMEOUTS # ----------------------------------------------------------------------------- connect_timeout 6 minutes request_timeout 2 minutes client_lifetime 180 minutes # ACCESS CONTROLS # ----------------------------------------------------------------------------- acl all src 0.0.0.0/0.0.0.0 acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl SSL_ports port 443 563 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT # 学内用のacl(省略) http_access allow manager localhost http_access deny manager http_access deny !Safe_ports http_access deny CONNECT !SSL_ports # 学内用のaclへのアクセス許可(省略) http_access deny all http_reply_access allow all icp_access allow all cache_mgr hoge@hoge.hogehoge.jp cache_effective_user nobody cache_effective_group nobody visible_hostname hoge.hogehoge.jp logfile_rotate 1 append_domain .hyogo-dai.ac.jp icp_hit_stale on acl hoge-servers dstdomain .(親サーバを経由しないドメイン) acl all src 0.0.0.0/0.0.0.0 always_direct allow hoge-servers never_direct allow all coredump_dir /usr/local/squid/var/cache ie_refresh on |