http_port 10.3.1.2:3128

#http_port 10.3.1.2:3129

acl all src 10.3.1.1/25

acl all src 10.4.1.1/25

#http_access deny all

acl User src 10.4.1.2

#Настройка каскадного прокси

#cache_peer 10.0.0.7 parent 3128 3130 default no-query

#never_direct allow all

# авторизацией пользователей в Active Directory

auth_param ntlm program c:/squid/libexec/mswin_ntlm_auth.exe -v

auth_param ntlm children 25

external_acl_type NT_global_group children=25 negative_ttl=0 %LOGIN c:/squid/libexec/mswin_check_lm_group.exe -G -d -c

acl ProxyUsers external NT_global_group InternetUsers

acl IT external NT_global_group IT

acl SB external NT_global_group SB

acl password proxy_auth REQUIRED

#http_access allow ProxyUsers

acl CONNECT method CONNECT

#Настройка кеша и логов

cache_mem 100 MB

cache_dir ufs c:/squid/var/cache 100 16 256

access_log c:/squid/var/logs/access.log squid

# OGRANICHENIE PORTOV

acl ICQ port 443 5190

http_access allow IT ICQ

#http_access deny ProxyUsers ICQ 

# BAN LIST 

acl BAN url_regex -i "c:/squid/etc/ban.list"

#http_access allow ProxyUsers BAN

http_access deny ProxyUsers BAN

http_access deny IT BAN

http_access allow SB BAN

#OGRANICHENIE SKOROSTI

#enable-delay-pools option

delay_pools 3   # kol-vo pulov

delay_class 1 1 # 1-y pul, 1-go klassa(na gruppu skorost')

delay_class 2 2 # 2-y pul, 2-go klassa(na gruppu i na polzovatelya)

delay_parameters 1 -1/-1

delay_parameters 2 512000/512000 128000/128000

delay_access 2 allow IT

delay_access 2 allow ProxyUsers

delay_access 1 deny IT

delay_access 1 deny ProxyUsers

#delay_access 1 deny User

#delay_access 2 allow User

#delay_access 2 deny Admin

http_access allow ProxyUsers CONNECT 

http_access allow IT CONNECT

http_access allow IT

http_access allow ProxyUsers

http_access allow SB

http_access allow User