squid缓存的初搭建

一、squid安装：

1、yum安装：sudo yum install squid

2、服务启动：sudo service squid start

3、加入开机启动：sudo chkconfig squid on

二、squid配置：

squid正向代理

在squid上配置：

acl http proto HTTP
acl allow_domain dstdomain test.vip.com
http_access allow http allow_domain
http_access deny http !allow_domain

# Recommended minimum configuration: # acl manager proto cache_object acl localhost src 10.0 . 0.0 / 8 acl to_localhost dst 127.0 . 0.0 / 8 0.0 . 0.0 / 32 :: 1 # Example rule allowing access from your local networks. # Adapt to list your (internal) IP networks from where browsing # should be allowed acl localnet src 10.0 . 0.0 / 8     # RFC1918 possible internal network acl localnet src 172.16 . 0.0 / 12  # RFC1918 possible internal network acl localnet src 192.168 . 0.0 / 16 # RFC1918 possible internal network acl localnet src fc00::/ 7       # RFC 4193 local private network range acl localnet src fe80::/ 10      # RFC 4291 link-local (directly plugged) machines acl SSL_ports port 443 acl Safe_ports port 80          # http #acl Safe_ports port 21         # ftp #acl Safe_ports port 443                # https #acl Safe_ports port 70         # gopher #acl Safe_ports port 210                # wais #acl Safe_ports port 1025 - 65535 # unregistered ports #acl Safe_ports port 280                # http-mgmt #acl Safe_ports port 488                # gss-http #acl Safe_ports port 591                # filemaker #acl Safe_ports port 777                # multiling http acl CONNECT method CONNECT visible_hostname mysquid # # Recommended minimum Access Permission configuration: # # Only allow cachemgr access from localhost #http_access allow manager localhost #http_access deny manager # Deny requests to certain unsafe ports #http_access deny !Safe_ports # Deny CONNECT to other than secure SSL ports #http_access deny CONNECT !SSL_ports # We strongly recommend the following be uncommented to protect innocent # web applications running on the proxy server who think the only # one who can access services on "localhost" is a local user #http_access deny to_localhost # # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS # # Example rule allowing access from your local networks. # Adapt localnet in the ACL section to list your (internal) IP networks # from where browsing should be allowed #http_access allow localnet #http_access allow localhost # And finally deny all other access to this proxy http_access allow all # Squid normally listens to port 3128 http_port 3128 accel vhost vport   #自定义允许访问域名的ACL，协议，端口 acl http proto HTTP acl allow_domain dstdomain test.vip.com http_access allow http allow_domain http_access deny http !allow_domain cache_dir ufs /var/spool/squid 100 16 256 #设置缓存日志文件路径 logformat main %>a  %{%Y-%m-%d %H:%M:%S}tl  %>Hs     %<st    %ru     %{Referer}>h    %Ss:%Sh