tom.guerin/siotp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

modiffichierconfigproxy

Browse Source
This commit is contained in:
Tom Guerin 2025-03-26 16:24:23 +01:00
parent ac6e3d8c49
commit 4e6028da5f
1 changed files with 14 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
sisr1/tp05_squid/squid.conf
View File

@ -1330,14 +1330,16 @@
# Example rule allowing access from your local networks. # Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing # Adapt to list your (internal) IP networks from where browsing
# should be allowed # should be allowed
acl localnet src 0.0.0.1-0.255.255.255 # RFC 1122 "this" network (LAN) # acl localnet src 0.0.0.1-0.255.255.255 # RFC 1122 "this" network (LAN)
acl localnet src 10.0.0.0/8 # RFC 1918 local private network (LAN) # acl localnet src 10.0.0.0/8 # RFC 1918 local private network (LAN)
acl localnet src 100.64.0.0/10 # RFC 6598 shared address space (CGN) # acl localnet src 100.64.0.0/10 # RFC 6598 shared address space (CGN)
acl localnet src 169.254.0.0/16 # RFC 3927 link-local (directly plugged) machines # acl localnet src 169.254.0.0/16 # RFC 3927 link-local (directly plugged) machines
acl localnet src 172.16.0.0/12 # RFC 1918 local private network (LAN) # acl localnet src 172.16.0.0/12 # RFC 1918 local private network (LAN)
acl localnet src 192.168.0.0/16 # RFC 1918 local private network (LAN) # acl localnet src 192.168.0.0/16 # RFC 1918 local private network (LAN)
acl localnet src fc00::/7 # RFC 4193 local private network range # acl localnet src fc00::/7 # RFC 4193 local private network range
acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines # acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines
acl localnet src 172.16.0.0/24
acl SSL_ports port 443 acl SSL_ports port 443
acl Safe_ports port 80 # http acl Safe_ports port 80 # http
@ -1351,6 +1353,7 @@ acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http acl Safe_ports port 777 # multiling http
# TAG: proxy_protocol_access # TAG: proxy_protocol_access
# Determine which client proxies can be trusted to provide correct # Determine which client proxies can be trusted to provide correct
# information regarding real client IP address using PROXY protocol. # information regarding real client IP address using PROXY protocol.
@ -1548,7 +1551,7 @@ include /etc/squid/conf.d/*.conf
# Example rule allowing access from your local networks. # Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks # Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed # from where browsing should be allowed
#http_access allow localnet http_access allow localnet
http_access allow localhost http_access allow localhost
# And finally deny all other access to this proxy # And finally deny all other access to this proxy
@ -2103,7 +2106,7 @@ http_access deny all
# #
# Squid normally listens to port 3128 # Squid normally listens to port 3128
http_port 3128 http_port 8080
# TAG: https_port # TAG: https_port
# Usage: [ip:]port [mode] tls-cert=certificate.pem [options] # Usage: [ip:]port [mode] tls-cert=certificate.pem [options]