Squid set to transparent agent Internet

With the front Shorewall port forwarding, set to transparent proxy.

Squid.conf focus on the following

&http://www.aliyun.com/zixun/aggregation/37954.html ">NBSP;

ACL MSN url_regex-i ^http://gateway.messenger.hotmail.com http_access allow MSN ACL admin ARP 00:40:05:13:c4:b2 HTTP_ Access allow admin ACL banned_sites Url_regex "/etc/squid/banned.list" ACL worktime time MTWHF 8:30-12:00 ACL Mmxfile urlpath_regex-i \.mp3$ \.avi$ \.rmvb$ \.rm$ \.wma$ \.wmv$ http_access deny Worktime mmxfile http_access deny Worktime banned_sites http_access allow localhost ACL loc1 src 192.168.1.0/24 ACL loc1_conn maxconn. CIDR ACL loc2_conn maxconn http_access deny Loc1 loc1_conn http_access allow Loc1 http_access deny loc2 src loc2_conn http _access allow loc2 http_access allow localhost http_access deny all httpd_accel_host virtual Httpd_accel_port Accel_with_proxy on Httpd_accel_uses_host_header on

# cat/etc/squid/banned.list

3721.com 21cn.com zichen.com kshuw.com cmfu.com zhaobao.com xilu.com mop.com peepsamurai.com purjoy.com people.com.cn Chi na-crane.com ei66.com yhzw.com sina.com chianren.com 163.net 163.com tianya.net tianya.cn tom.com sohu.com 263.com Sport s.cn aol.com gigigaga.com

The main limit is not allowed to download songs and movies and go to the community at work. and the number of concurrent connections is limited according to different network segments.