/etc/sysconfig/iptables # Generated by iptables-save v1.4.7 on - TopicsExpress

/etc/sysconfig/iptables # Generated by iptables-save v1.4.7 on Wed Nov 9 13:37:50 2011 *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [10363:2864591] -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -i eth+ -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 80 -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 443 -j ACCEPT -A INPUT -j REJECT --reject-with icmp-host-prohibited -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT -A FORWARD -p icmp -j ACCEPT -A FORWARD -i lo -j ACCEPT -A FORWARD -i eth+ -j ACCEPT -A FORWARD -j REJECT --reject-with icmp-host-prohibited COMMIT # Completed on Wed Nov 9 13:37:50 2011 # Generated by iptables-save v1.4.7 on Wed Nov 9 13:37:50 2011 *nat :PREROUTING ACCEPT [4:650] :POSTROUTING ACCEPT [0:0] :OUTPUT ACCEPT [0:0] -A PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128 -A PREROUTING -i eth0 -p tcp -m tcp --dport 443 -j REDIRECT --to-ports 3129 COMMIT # Completed on Wed Nov 9 13:37:50 2011 /etc/squid/squid.conf # # Recommended minimum configuration: # visible_hostname poison squid acl manager proto cache_object acl localhost src 127.0.0.1/32 ::1 acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1 acl allowed_sites dstdomain /etc/squid/conf.d/allowed_sites.conf #acl limited_IP src /etc/squid/conf.d/limited_IP.conf acl denied_sites dstdomain /etc/squid/conf.d/denied_ext.conf # Example rule allowing access from your local networks. # Adapt to list your (internal) IP networks from where browsing # should be allowed acl localnet src 10.0.0.0/8 # RFC1918 possible internal network acl localnet src 172.16.0.0/12 # RFC1918 possible internal network acl localnet src 192.168.0.0/16 # RFC1918 possible internal network acl localnet src fc00::/7 # RFC 4193 local private network range acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT http_access allow manager localhost http_access deny manager http_access deny !Safe_ports http_access deny CONNECT !SSL_ports # We strongly recommend the following be uncommented to protect innocent # web applications running on the proxy server who think the only # one who can access services on localhost is a local user #http_access deny to_localhost # # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS # # Example rule allowing access from your local networks. # Adapt localnet in the ACL section to list your (internal) IP networks # from where browsing should be allowed http_access deny denied_sites http_access allow allowed_sites #http_access allow localnet http_access allow localhost # And finally deny all other access to this proxy http_access deny all # Squid normally listens to port 3128 # http_port 3128 intercept http_port 3128 transparent https_port 3129 transparent key=/etc/squid/ssl/squid.key cert=/etc/squid/ssl/squid.crt # Uncomment and adjust the following to add a disk cache directory. cache_dir ufs /var/spool/squid 4096 16 512 # Leave coredumps in the first cache dir coredump_dir /var/spool/squid # Add any of your own refresh_pattern entries above these. refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 refresh_pattern . 0 20% 4320 to /etc/squid/conf.d/allowed_sites.conf file you will add allowed sites. according to this configurations only sites from that file will be allowed. you can install webmin and there make an account, that will be able to only one operation – online editing as root /etc/squid/conf.d/allowed_sites.conf (others section). after saving it should execute: /etc/init.d/squid reload How to generate ssl certificate here: shirker.blog/2011/11/10/generate-ssl-certificate-for-squid/ To ensure, thats squid is listening both ports type lsof -n -i -P

Tonight, New York States Emergency Operations Center is activated

The GOD Fire that Changed our[India’s] Lives 1993

From Piers Morgan Live, the words of a Brit to Mayor DeBlasio and

SALE SALE, di intip yukk di ALBUM SALE....HARGA DISKON SPECIAL

How can one come so close to the Lord and still takes delight in

Back to Kojic Acid, Placenta, & Glutathione Triple

I LOVE YOU , LORD JESUS ! I dedicate this wonderful day to you.

☆☆ Barcelona Akan Ajukan Tawaran Resmi Untuk Agger dan David

Truyện Dài Kỳ: Khi Những Tiểu Thư Là Hotboy Tại

**Farmina Natural & Delicious Dog and Cat Food - Now Available at

For those of you that caught the show, (and for those that didnt

BREAKING NEWS!!! (NBN) [South Bend, IN] - IRISH OFFENSIVE

TAKE FIVE FOR FAITH: Daily renewal for busy Catholics Sunday,

Sau màn tái hợp khá thành công với tiền vệ Mathieu

Ogun: How we raised IGR from N700m to N4bn within two years –

Jadwal & Pasaran Bola Tgl 16-17 Juni Confederations Cup 17/Jun

Our vision is to create financial security for the type of

Black Friday Deal 2014 Cult Classics Series 1 Friday the 13th VII

HUGE WINS as Recreational Marijuana is passed in OREGON, ALASKA