Hi,
I would like to set up Squid and Dansguardian in Pardus 2011 32-bit.
I cannot get Squid to start properly. There are different squid.conf files to
choose from. I used squid.conf.dansguardian and renamed it squid.conf.
When I start Squid from the command line I get this:
2011/05/28 17:06:53| ERROR: '0.0.0.0/0.0.0.0' needs to be replaced by the term 'all'.
2011/05/28 17:06:53| SECURITY NOTICE: Overriding config setting. Using 'all' instead.
2011/05/28 17:06:53| WARNING: (B) '::/0' is a subnetwork of (A) '::/0'
2011/05/28 17:06:53| WARNING: because of this '::/0' is ignored to keep splay tree searching predictable
2011/05/28 17:06:53| WARNING: You should probably remove '::/0' from the ACL named 'all'
2011/05/28 17:06:53| WARNING: Netmasks are deprecated. Please use CIDR masks instead.
2011/05/28 17:06:53| WARNING: IPv4 netmasks are particularly nasty when used to compare IPv6 to IPv4 ranges.
2011/05/28 17:06:53| WARNING: For now we will assume you meant to write /32
2011/05/28 17:06:53| cache_cf.cc(363) parseOneConfigFile: squid.conf:61 unrecognized: 'broken_vary_encoding'
My squid.conf file looks like this:
# Pardus Linux transparent Squid proxy configuration for Dansguardian
http_port 127.0.0.1:3128 transparent
visible_hostname pardus-proxy
icp_port 0
cache_mem 128 MB
maximum_object_size_in_memory 4 MB
cache_dir aufs /var/cache/squid 256 16 256
access_log /var/log/squid/access.log squid
coredump_dir /var/cache/squid
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all
icp_access allow localhost
icp_access deny all
miss_access allow localhost
miss_access deny all
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
##############################
Can anyone recommend changes to this file?
Thank you
Author