Squid 3 mungkin bukan versi stable, tapi bnyk feature yang ditawarkan.
Mungkin bisa dilihat tinjauan global konfigurasi squid ini
------------------------
* Network Parameters
o http_port
o https_port ssl_unclean_shutdown
o ssl_engine
o sslproxy_client_certificate
o sslproxy_client_key
o sslproxy_version
o sslproxy_options
o sslproxy_cipher
o sslproxy_cafile
o sslproxy_capath
o sslproxy_flags
o icp_port
o htcp_port
o mcast_groups
o udp_incoming_address
o udp_outgoing_address
* Logfile pathnames and cache directory
o cache_dir
o logformat
o access_log
o cache_log
o cache_store_log
o cache_swap_log
o emulate_httpd_log
o log_ip_on_direct
o mime_table
o log_mime_hdrs
o useragent_log
o referer_log
o pid_filename
o debug_options
o log_fqdn
o client_netmask
* Options for tuning the cache
o wais_relay_host
o wais_relay_port
o request_header_max_size
o request_body_max_size
o refresh_pattern
o quick_abort_min
o quick_abort_max
o quick_abort_pct
o read_ahead_gap
o negative_ttl
o positive_dns_ttl
o negative_dns_ttl
o range_offset_limit
* Timeouts
o connect_timeout
o peer_connect_timeout
o read_timeout
o request_timeout
o persistent_request_timeout
o client_lifetime
o half_closed_clients
o pconn_timeout
o ident_timeout
o shutdown_lifetime
* Miscellaneous
o dns_testnames
o logfile_rotate
o append_domain
o tcp_recv_bufsize
o err_html_text
o email_err_data
o deny_info
o memory_pools
o memory_pools_limit
o via
o forwarded_for
o log_icp_queries
o icp_hit_stale
o minimum_direct_hops
o minimum_direct_rtt
o cachemgr_passwd
o store_avg_object_size
o store_objects_per_bucket
o client_db
o netdb_low
o netdb_high
o netdb_ping_period
o query_icmp
o test_reachability
o buffered_logs
o reload_into_ims
o always_direct
o never_direct
o header_access
o header_replace
o icon_directory
o error_directory
o maximum_single_addr_tries
o snmp_port
o snmp_access
o snmp_incoming_address
o snmp_outgoing_address
o as_whois_server
o wccp_router
o wccp_version
o wccp_incoming_address
o wccp_outgoing_address
* Options which affect the cache size
o cache_mem
o cache_swap_low
o cache_swap_high
o maximum_object_size
o minimum_object_size
o maximum_object_size_in_memory
o ipcache_size
o ipcache_low
o ipcache_high
o fqdncache_size
o cache_replacement_policy
o memory_replacement_policy
* Administrative parameters
o cache_mgr
o cache_effective_user
o cache_effective_group
o visible_hostname
o unique_hostname
o hostname_aliases
* Options which affect the neighbour selection algorithm
o cache_peer
o cache_peer_domain
o neighbor_type_domain
o icp_query_timeout
o maximum_icp_query_timeout
o minimum_icp_query_timeout
o mcast_icp_query_timeout
o dead_peer_timeout
o hierarchy_stoplist
o no_cache
o background_ping_rate
* Options for cache registration services
o announce_period
o announce_host
o announce_port
o announce_file
* Options for external support programs
o ftp_user
o ftp_list_width
o ftp_passive
o ftp_sanitycheck
o check_hostnames
o cache_dns_program
o dns_children
o dns_retransmit_interval
o dns_timeout
o dns_defnames
o dns_nameservers
o hosts_file
o diskd_program
o unlinkd_program
o pinger_program
o redirect_program
o redirect_children
o redirect_concurrency
o redirect_rewrites_host_header
o redirector_access
o auth_param
o authenticate_cache_garbage_interval
o authenticate_ttl
o authenticate_ip_ttl
o external_acl_type
* Access controls
o acl
o http_access
o http_reply_access
o icp_access
o miss_access
o cache_peer_access
o ident_lookup_access
o tcp_outgoing_tos
o tcp_outgoing_address
o reply_body_max_size
o log_access
* Delay pool parameters
o delay_pools
o delay_class
o delay_access
o delay_parameters
o delay_initial_bucket_level
o incoming_icp_average
o incoming_http_average
o incoming_dns_average
o min_icp_poll_cnt
o min_dns_poll_cnt
o min_http_poll_cnt
o max_open_disk_fds
o offline_mode
o uri_whitespace
o broken_posts
o mcast_miss_addr
o mcast_miss_ttl
o mcast_miss_port
o mcast_miss_encode_key
o nonhierarchical_direct
o prefer_direct
o strip_query_terms
o coredump_dir
o redirector_bypass
o ignore_unknown_nameservers
o digest_generation
o digest_bits_per_entry
o digest_rebuild_period
o digest_rewrite_period
o digest_swapout_chunk_size
o digest_rebuild_chunk_percentage
o chroot
client_persistent_connections
o server_persistent_connections
o pipeline_prefetch
o extension_methods
o request_entities
o high_response_time_warning
o high_page_fault_warning
o high_memory_warning
o store_dir_select_algorithm
o ie_refresh
o vary_ignore_expire
o sleep_after_fork
And coba peering ke open proxy GrangeNet deh..buat tuning prixy lokal kita
# GrangeNet proxy peers ACL
acl proxy_peers src 131.170.184.3/32
acl proxy_peers src 1.1.1.1/32
acl proxy_peers src 1.1.2.2/32
acl proxy_peers src 2.2.1.12/32
acl proxy_peers src 2.2.2.13/32
You will need to apply it at the appropriate point in your configuration, thus:
# Allow access from caches we peer with
http_access allow proxy_peers
Then you'll need to teach Squid about whom to talk to:
# Our peering caches
cache_peer proxy.vpac.org sibling 3128 3130 no-query
cache_peer proxy1.foo.edu.au sibling 3128 3130 no-query
cache_peer proxy2.foo.edu.au sibling 3128 3130 no-query
cache_peer www-cache1.bar.edu.au sibling 3128 3130 no-query
cache_peer www-cache2.bar.edu.au sibling 3128 3130 no-query
You will also need some access controls to prevent forwarding loops:
# Some access restrictions (to prevent forwarding loops)
cache_peer_access www.vpac.org deny proxy_peers
cache_peer_access proxy1.foo.edu.au deny proxy_peers
cache_peer_access proxy2.foo.edu.au deny proxy_peers
cache_peer_access www-cache1.bar.edu.au deny proxy_peers
cache_peer_access www-cache2.bar.edu.au deny proxy_peers
