From owner-FreeBSD-users-jp@jp.freebsd.org  Wed Sep 20 22:16:20 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id WAA57302;
	Wed, 20 Sep 2000 22:16:20 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from ma2.justnet.ne.jp (ma2p.justnet.ne.jp [133.130.3.14])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with SMTP id WAA57297
	for <FreeBSD-users-jp@jp.freebsd.org>; Wed, 20 Sep 2000 22:16:20 +0900 (JST)
	(envelope-from yoronk@ma2.justnet.ne.jp)
Received: (qmail 16932 invoked from network); Wed, 20 Sep 2000 22:16:11 +0900
Received: (ofmipd 210.227.250.175); Wed, 20 Sep 2000 22:16:11 +0900
Date: Wed, 20 Sep 2000 22:16:55 +0900
Message-ID: <005e01c02305$32a8b620$a5fae3d2@yoron.or.jp.yoron.or.jp>
From: "YK" <yoronk@ma2.justnet.ne.jp>
To: <FreeBSD-users-jp@jp.freebsd.org>
References: <009f01c022bf$116b0c60$abfae3d2@yoron.or.jp.yoron.or.jp> <200009200521.OAA16146@vaio.he.kobelcosys.co.jp>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-2022-jp"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.00.2314.1300
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: FreeBSD-users-jp 55390
Subject: [FreeBSD-users-jp 55390] Re: squid
 =?ISO-2022-JP?B?GyRCISEkSyREJCQkRjY1JCgkRiQvJEAkNSQkGyhC?= 
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: yoronk@ma2.justnet.ne.jp

$B$3$s$P$s$O(B
$BM?O@Eg!w;3:,$G$9(B

$B?"LZ$5$s$N%"%I%P%$%9$r85$K(B

acl clients src 192.168.1.0/255.255.255.0
http_access allow clients
$B$rDI2C$7$?$j!!$^$?(B
http_access deny all
$B$H=q$$$?$j$7$F!!;n$7$^$7$?$,!!$^$?%(%i!<$,=P$^$9(B

$BA02s$N%(%i!<!!$3$3$+$i(B////
> While trying to retrieve the URL: http://www.linux.or.jp/
>
> The following error was encountered:
> Access Denied.
> Access control configuration prevents your request from being allowed at
> this time. Please contact your service provider if you feel this is
> incorrect.
$BA02s$N%(%i!<!!$3$3$^$G(B///
$B!!!!(B

$B:#2s$N%(%i!<(B
The following error was encountered:

Unable to determine IP address from host name for www.yahoo.co.jp
The dnsserver returned:

Server Failure: The name server was unable to process this query.
This means that:

 The cache was not able to resolve the hostname presented in the URL.
 Check if the address is correct.

$B:#2s$N%(%i!<$3$3$^$G(B


$B$3$l$C$F30It$NL>A02r7h$,$G$-$F$J$$$N$G$9$M!#;d$O(BDNS$B$K$O(BLAN$BFb$N(B
$B>pJs$@$1$G$9!#(Bnamed.ca$B$,M-$j$^$;$s!!$3$l$,860x$G$7$g$&$+!)(B
$B!JL>A02r7h$O(BDNS$B$G$J$/!!(Bhosts$B%U%!%$%k$K$h$C$F$b$G$-$^$9$G$7$g$&$+!)!K(B

$B$=$l$+$iJ8Kv$K!!=i$a$N!!(Bsquid.conf$B!!$r:\$;$^$9(B


>
> $B!V8=;~E@$G$O(B ACL $B$,$"$J$?$N%"%/%;%9$r5v2D$9$k$h$&$K@_Dj$5$l$F$$$^$;$s!#(B
> $B$=$l$,$*$+$7$$$H;W$&$N$J$i!"%5!<%S%9$NDs6!<T$K$*Ld$$9g$o$;$/$@$5$$!#!W(B
>
> $B$H$$$&;]$N%a%C%;!<%8$r=P$7$F$$$k$b$N$G$9!#(B
>
> $B$?$H$($P!"0J2<$N$h$&$J46$8$G!"(Bsquid.conf $BFb$G(B squid $B$X$N%"%/%;%9(B
> $B8"$,@_Dj$5$l$F$$$J$1$l$P$J$j$^$;$s$,!"$=$l$,@5$7$/@_Dj$5$l$F$$$J$$!"(B
> $B$"$k$$$O$3$NItJ,$,%G%U%)%k%H$N$^$^$J$N$G$7$g$&!#(B
>
> acl all src 0.0.0.0/0.0.0.0
> acl clients src 192.168.1.0/255.255.255.0
> http_access allow clients
> http_access deny all
>
> $B%G%U%)%k%H$N(B squid.conf $B$G$O!">e5-$NNc$N(B 1 $B9TL\$N(B all $B$N9T$@$1(B
> $B$,@_Dj$5$l$F$$$F!";D$j$NJ,$KAjEv$9$k@_Dj$,F~$C$F$$$J$$$O$:$G$9!#(B
>
> $B$^$?!">e5-$NNc$K$*$$$F!"(Ball $B$N9T$O!"%$%s%?!<%M%C%HB&$+$i>!<j$K(B
> squid $B$rMxMQ$5$l$?$j$7$J$$$?$a$KI,MW$G$9$,!"JLES!"(Bipfilter $B$d(B
> ipfw $B$G5qH]@_Dj$,$J$5$l$F$$$k$N$J$i!"$J$/$F$b9=$o$J$$$b$N$G$9!#(B
>


$B$3$3$+$i(Bsquid.conf$B!!(B////

http_port 3128
icp_port 0
cache_mem  8 MB
cache_dir ufs /var/spool/squid/cache 100 16 256
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
pid_filename /var/run/squid.pid
refresh_pattern  ^ftp:  1440 20% 10080
refresh_pattern  ^gopher: 1440 0% 1440
refresh_pattern  .  0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl clients src 192.168.1.0/255.255.255.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280  # http-mgmt
acl Safe_ports port 488  # gss-http
acl Safe_ports port 591  # filemaker
acl Safe_ports port 777  # multiling http
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny all
http access allow clients
icp_access allow all
miss_access allow all
cache_effective_user nobody

/////$B$3$3$^$G(B



