squid.conf/anggaa

# SQUID CONFIGURATION SQUID VERSION-3.5.xx
# HTTP | HTTPS SQUID PROXY SERVER RENEGADE

acl mikrotik src 192.168.0.0/24
acl localnet src 192.168.1.0/24
acl hotspot src 192.168.100.0/24
acl all src
acl SSL_ports port 443
acl SSL_ports port 5353
acl Safe_ports port 182
acl Safe_ports port 21
acl Safe_ports port 22
acl Safe_ports port 53
acl Safe_ports port 70
acl Safe_ports port 80
acl Safe_ports port 210
acl Safe_ports port 280
acl Safe_ports port 1025-65535
acl Safe_ports port 443
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl Safe_ports port 5353
acl Safe_ports port 18901-18909
acl Safe_ports port 1818
acl Safe_ports port 39190
acl Safe_ports port 40000-40010
acl Safe_ports port 7777
acl Safe_ports port 19101
acl Safe_ports port 27780
acl Safe_ports port 29000
acl Safe_ports port 22100
acl Safe_ports port 5121
acl Safe_ports port 6000-6152
acl Safe_ports port 2001
acl Safe_ports port 9601-9602
acl Safe_ports port 8085
acl Safe_ports port 11011-11041
acl Safe_ports port 13413
acl Safe_ports port 19000
acl Safe_ports port 5105
acl Safe_ports port 10009
acl Safe_ports port 12060-12070
acl Safe_ports port 6000-6001
acl Safe_ports port 29200
acl Safe_ports port 10402
acl Safe_ports port 9600
acl Safe_ports port 15002
acl Safe_ports port 16402-16502
acl Safe_ports port 5126
acl Safe_ports port 3010
acl Safe_ports port 11031
acl Safe_ports port 11440-11460
acl Safe_ports port 11100-11125
acl Safe_ports port 4300
acl Safe_ports port 12011
acl Safe_ports port 12110
acl Safe_ports port 15001
acl Safe_ports port 15002
acl Safe_ports port 7341
acl Safe_ports port 7451
acl Safe_ports port 7808
acl Safe_ports port 30000
acl Safe_ports port 9001
acl Safe_ports port 9030
acl Safe_ports port 953
acl Safe_ports port 42051-42052
acl Safe_ports port 36567
acl Safe_ports port 8001
acl Safe_ports port 14000-14050
acl Safe_ports port 27019
acl Safe_ports port 28901-28920
acl Safe_ports port 7201-7208
acl Safe_ports port 17001-17002
acl Safe_ports port 14300-14440
acl Safe_ports port 15100-15150
acl Safe_ports port 7770-7790
acl Safe_ports port 16320-16340
acl Safe_ports port 9000-9160
acl Safe_ports port 7200
acl Safe_ports port 7400
acl Safe_ports port 7106
acl Safe_ports port 7999
acl Safe_ports port 47611
acl Safe_ports port 36567
acl Safe_ports port 10087
acl Safe_ports port 27000-27050
acl Safe_ports port 27014-27050
acl Safe_ports port 4380
acl Safe_ports port 3478
acl Safe_ports port 4379
acl Safe_ports port 8890
acl Safe_ports port 9339
acl Safe_ports port 8890
acl Safe_ports port 7200-7210
acl Safe_ports port 7450-7460
acl Safe_ports port 8000
acl Safe_ports port 64990-65010
acl CONNECT method CONNECT
# ========================================================================================================
# xigncode
# ========================================================================================================
acl NOCACHE urlpath_regex \.xem \.xrl \.rev
no_cache deny NOCACHE
acl xigncode url_regex -i ^http.*xigncode.*
store_miss deny xigncode
send_hit deny xigncode
# ========================================================================================================
# Lock_resol 240-360
# ========================================================================================================
acl youtube_240 dstdomain .youtube.com
request_header_access Accept-Encoding deny youtube_240
loadable_modules /usr/local/lib/DSI_ecap_youtube.so
ecap_enable on
ecap_service ecapModifier respmod_precache \
uri=ecap://dokter-squid.com/ecap yt_quality=medium
adaptation_access ecapModifier allow youtube_240
adaptation_access ecapModifier deny all
# =========================================================================================================
#Deny Access
acl deny_domain dstdomain "/etc/squid/malesbanget.txt"
http_access deny deny_domain
http_reply_access deny deny_domain
# ========================================================================================================
acl deny_url url_regex -i "/etc/squid/blokir.txt"
http_access deny deny_url
http_reply_access deny deny_url
# ========================================================================================================
acl windowsupdate dstdomain windowsupdate.microsoft.com
acl windowsupdate dstdomain .update.microsoft.com
acl windowsupdate dstdomain download.windowsupdate.com
acl windowsupdate dstdomain redir.metaservices.microsoft.com
acl windowsupdate dstdomain images.metaservices.microsoft.com
acl windowsupdate dstdomain c.microsoft.com
acl windowsupdate dstdomain www.download.windowsupdate.com
acl windowsupdate dstdomain wustat.windows.com
acl windowsupdate dstdomain crl.microsoft.com
acl windowsupdate dstdomain sls.microsoft.com
acl windowsupdate dstdomain productactivation.one.microsoft.com
acl windowsupdate dstdomain ntservicepack.microsoft.com
acl windowsupdate dstdomain www.update.microsoft.com
# ========================================================================================================
# config_GAME
# ========================================================================================================
# dota2
acl store_rewrite_list url_regex -i .*\.*steampowered\.com\/(.*)
acl store_rewrite_list url_regex -i ^https?\:\/\/.*steampowered.*\/(client|depot)\/(.*)\?.*
acl store_rewrite_list url_regex -i ^https?\:\/\/.*steampowered.*\/(client|depot)\/(.*)
refresh_pattern -i ^http:\/\/((.*dota2\.com*).*$) 43830 99% 259200 override-expire override-lastmod ignore-reload
refresh_pattern -i .*\.*steampowered\.com\/.* 1440 100% 4320 override-expire override-lastmod reload-into-ims ignore-auth store-stale
refresh_pattern -i ^http:\/\/.*steampowered\.com.* 1 50% 4320 reload-into-ims refresh-ims
# ========================================================================================================
# PARTIAL GARENA
# GAME PARTIAL CONTENT
acl partial_garena url_regex -i .*\.garenanow.com\/.*\.(dll|xml|exe|version|jpg|png|bmp)$
acl partial_garena url_regex -i .*\.garenanow.com\/.*
acl partial_garena url_regex -i .*cdn.id.garenanow.com\/.*
acl partial_garena url_regex -i .*\.cdn.starhub.com\/.*\.exe?.*
refresh_pattern -i .*cdn.garenanow.com\/.* 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i .*edge.cdn.starhub.com\/.* 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i .*cdn.id.garenanow.com\/.* 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
# ========================================================================================================
# GAME PARTIAL CONTENT
#acl partial_206 url_regex -i ^http:\/\/.*\.(mozilla\.net)\/.*\.*\/[^\&\s]*\/(.*\.mar)
acl partial_206 url_regex -i ^http:\/\/(.*\.mozilla\.net\/pub\/firefox\/.*[^\&\s]*\/)(.*\.mar)
acl partial_206 url_regex -i ^http:\/\/(.*\.github\.io\/.*)[^\&\s]*\/(.*\.mp4?.*)
acl partial_206 url_regex -i ^http:\/\/(.*\.cdninstagram\.com\/.*)[^\&\s]*\/(.*\.mp4?.*)
acl partial_206 url_regex -i ^http:\/\/.*\.(garenanow\.com)(.*\.exe?.*)
acl partial_206 url_regex -i ^http:\/\/.*\.(garenanow\.com\/.*[^\&\s]*).*(patcher.*\.?)
acl partial_206 url_regex -i ^http:\/\/.*\.(garenanow\.com)\/.*\.*\/(.*patcher.*)
acl partial_206 url_regex -i ^http:\/\/(.*\.*\.gemscool\.com)\/.*\/.*\/(.*pak?)
acl partial_206 url_regex -i ^http:\/\/(.*\.*\.gemscool\.com)\/.*\/.*\/(.*iop?)

#refresh_pattern -i ^http:\/\/.*\.(mozilla\.net)\/.*\.*\/[^\&\s]*\/(.*\.mar) 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i ^http:\/\/(.*\.mozilla\.net\/pub\/firefox\/.*[^\&\s]*\/)(.*\.mar) 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i ^http:\/\/(.*\.github\.io\/.*)[^\&\s]*\/(.*\.mp4?.*) 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i ^http:\/\/(.*\.cdninstagram\.com\/.*)[^\&\s]*\/(.*\.mp4?.*) 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i ^http:\/\/(.*\.*\.gemscool\.com)\/.*\/.*\/(.*pak?)  1440 20% 14400 ignore-reload override-expire override-lastmod ignore-must-revalidate  ignore-private ignore-no-store ignore-auth store-stale
refresh_pattern -i ^http:\/\/.*\.(garenanow\.com)(.*\.exe?.*) 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i ^http:\/\/.*\.(garenanow\.com\/.*[^\&\s]*).*(patcher.*\.?) 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i ^http:\/\/.*\.(garenanow\.com)\/.*\.*\/(.*patcher.*)  1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i ^http:\/\/(.*\.*\.gemscool\.com)\/.*\/.*\/(.*iop?)  1440 20% 14400 ignore-reload override-expire override-lastmod ignore-must-revalidate  ignore-private ignore-no-store ignore-auth store-stale
refresh_pattern -i ^http:\/\/(.*\.*\.gemscool\.com)\/.*\/.*\/(.*zip?) 1440 40% 14400 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
range_offset_limit none partial_206
# ========================================================================================================
# ACCESS RULES
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow mikrotik
http_access allow localnet
http_access allow hotspot
http_access allow localhost
http_reply_access allow all
http_access deny all

# LISTENING PORT SQUID
https_port 3127 tproxy ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=4MB cert=/etc/squid/ssl_certs/squid.crt key=/etc/squid/ssl_certs/squid.key cipher=ECDHE-RSA-RC4-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA:DHE-RSA-CAMELLIA128-SHA:AES128-SHA:RC4-SHA:HIGH:!aNULL:!MD5:!ADH
http_port 3128
http_port 3129 tproxy


# CONNECTION HANDLING
qos_flows local-hit=0x30
collapsed_forwarding on
balance_on_multiple_ip on
detect_broken_pconn on
client_persistent_connections off
server_persistent_connections on

# DNS OPTIONS
#dns_packet_max 4096
dns_defnames on
dns_v4_first on
connect_retries 2
negative_dns_ttl 1 second
range_offset_limit 0
quick_abort_min 0
quick_abort_max 0
quick_abort_pct 80
ipcache_low 98
ipcache_high 99
ipcache_size 4096
fqdncache_size 2048
pipeline_prefetch 0

# MISCELEANOUS
memory_pools off
reload_into_ims on
max_filedescriptors 65536

# CACHE MANAGEMENT
cache_mem 512 MB
maximum_object_size_in_memory 128 KB
memory_replacement_policy heap GDSF
cache_effective_group proxy
cache_effective_user proxy
cache_dir aufs /cache/cache 25000 59 256
coredump_dir /cache/cache
cache_mgr Gnet
visible_hostname Gnet
minimum_object_size 0 KB
maximum_object_size 1 GB
read_ahead_gap 64 KB
cache_replacement_policy heap LFUDA
store_dir_select_algorithm least-load
# strip_query_terms off
cache_swap_high 90
cache_swap_low 95

# LOG FILE OPTIONS
acl log method CONNECT
logfile_daemon /usr/lib/squid/log_file_daemon
access_log daemon:/var/log/squid/access.log !CONNECT
# cache_log /dev/null
cache_log /var/log/squid/cache.log
debug_options ALL,1 22,3
# cache_store_log none
cache_store_log /var/log/squid/store.log
logfile_rotate 5
pid_filename /var/run/squid.pid

# FILTERING HTTPS
acl 1 dstdomain .fbcdn.net .akamaihd.net .fbsbx.com
acl 1 dstdomain .cdninstagram.com
acl 2 url_regex -i ^http:\/\/[a-z]+.*(cdninstagram\.com\/.*)\/(.*(jpeg|gif|jpg|png|ico).*)
acl 2 url_regex -i ^http.*\.(fbcdn|akamaihd)\.net\/h(profile|photos).*[\d\w].*\/([\w]\d+x\d+\/.*\.[\d\w]{3}).*
acl 2 url_regex -i ^http(.*)static(.*)(akamaihd|fbcdn).net\/rsrc.php\/(.*\/.*\/(.*).(js|css|png|gif))(\?(.*)|$)
acl 2 url_regex -i ^https?:\/\/[a-zA-Z0-9\-\_\.\%]*(fbcdn|akamaihd)[a-zA-Z0-9\-\_\.\%]*net\/rsrc\.php\/(.*)
acl 2 url_regex -i ^https?\:\/\/.*(profile|photo|creative).*\.ak\.fbcdn\.net\/((h|)(profile|photos)-ak-)(snc|ash|prn)[0-9]?(.*)
acl 2 url_regex -i ^https?:\/\/attachment\.fbsbx\.com\/.*\?(id=[0-9]*).*
acl 2 url_regex -i ^https?:\/\/.*(profile|photo|creative)*.akamaihd\.net\/((h|)(profile|photos|ads)-ak-)(snc|ash|prn|frc[0-9])[0-9]?(.*)
acl 2 url_regex -i ^https?\:\/\/video\.(.*)\.fbcdn\.net\/(.*?)\/([0-9_]+\.(mp4|flv|avi|mkv|m4v|mov|wmv|3gp|mpg|mpeg)?)(.*)
acl 2 url_regex -i \.fbsbx\.com\/.*\/(.*\.(unity3d|pak|zip|exe|dll|jpg|png|gif|swf)/)$
acl 2 url_regex -i ^https?:\/\/([^\.]*)\.yimg\.com\/(.*)
acl 2 url_regex -i (.*\.vimeocdn\.com\/.*[^\&\s]*)\/([^\&\s]*\.?).*$
acl 2 url_regex -i ^https:\/\/.*googleapis\.com\/.*\.*\/v2\/code\.google\.com\/.*\.*
acl 2 url_regex -i ^https?:\/\/.*\.gstatic\.com\/images\?q=tbn\:(.*)
acl 2 url_regex -i ^https:\/\/.*googleapis\.com\/.*\.*\/v2\/code\.google\.com\/.*\.*
acl 2 url_regex -i ^http:\/\/.*\.*filehippo\.com.*\.*
acl 2 url_regex -i ^https?:\/\/.*\.reverbnation\.com\/.*\/(ec_stream_song|download_song_direct|stream_song)\/([0-9]*).*
acl 2 url_regex -i .*(audio_player|ec_stream_song).*$
acl 2 url_regex -i (reverbnation|c2lo)\.com\/(get_audio|audioplayback|audioplay).*$
acl 2 url_regex -i ^https?:\/\/([a-z0-9.]*)(\.doubleclick\.net|\.quantserve\.com|.exoclick\.com|interclick.\com|\.googlesyndication\.com|\.auditude\.com|.visiblemeasures\.com|yieldmanager|cpxinteractive)(.*)
acl 2 url_regex -i ^https?:\/\/(.*?)\/(ads)\?(.*?)
acl 3 url_regex -i ^https?:\/\/(.*?)\/speedtest\/.*\.(jpg|txt|png|gif|swf)\?.*
acl 3 url_regex -i speedtest\/.*\.(jpg|txt|png|gif|swf)\?.*
acl 4 url_regex -i reverbnation.*audio_player.*ec_stream_song.*$
acl 5 url_regex -i utm.gif.*
acl 5 url_regex -i ^http:\/\/[a-z]+[0-9]\.google\.com doubleclick\.net
acl 5 url_regex -i \.(mp2|mp3|mid|midi|mp[234]|wav|ram|ra|rm|au|3gp|m4r|m4a)\?
acl 5 url_regex -i \.(mpg|mpeg|mp4|m4v|mov|avi|asf|wmv|wma|dat|flv|swf)\?
acl 6 url_regex -i c.android.clients.google.com.market.GetBinary.GetBinary.*
acl 6 url_regex -i \.(mp2|mp3|mid|midi|mp[234]|wav|ram|ra|rm|au|3gp|m4r|m4a)\?
acl 6 url_regex -i ^http:\/\/([A-Za-z-]+[0-9]+)*\.[A-Za-z]*\.[A-Za-z]*
acl 6 url_regex -i \.(mp2|mp3|mid|midi|mp[234]|wav|ram|ra|rm|au|3gp|m4r|m4a)$
acl 6 url_regex -i \.(mpg|mpeg|mp4|m4v|mov|avi|asf|wmv|wma|dat|flv|swf)$
acl 6 url_regex -i \.(jpeg|jpg|jpe|jp2|gif|tiff?|pcx|png|bmp|pic|ico)$
acl 6 url_regex -i ^https:\/\/.*\.sndcdn\.com.*?\/(.*\.(json|js|jpeg|gif|svg|jpg|png|ico).*)
acl 6 url_regex -i  ^https:\/\/(.*\.soundcloud\.com)(.*\.?)
acl 7 url_regex -i (get_video\?|videodownload\?|videoplayback.*id)
acl 7 url_regex -i ^https?:\/\/.*\.googlevideo\.com\/videoplayback\?
acl 7 url_regex -i ^https?:\/\/.*\.ytimg\.com.*\.(webp|jpg|gif)
acl 7 url_regex -i ^https?\:\/\/.*\.*ytimg\.com\/(.*)
acl 7 url_regex -i ^https?\:\/\/.*\.*.ggpht.com\/(.*?)$
acl 7 url_regex -i youtube.*(ptracking|stream_204|player_204|gen_204).*$
acl 7 url_regex -i \.c\.(youtube|google)\.com\/(get_video|videoplayback|videoplay).*$
acl 7 url_regex -i (youtube|google).*\/videoplayback\?.*

acl 8 http_status 302

acl store_url url_regex -i (youtube|googlevideo|docs.google|video.google).*videoplayback\?.*
acl loop_302 http_status 302
acl loop_mime rep_mime_type text/html
acl loop_mime rep_mime_type text/plain
acl getmethod method GET

store_miss deny store_url loop_302
store_miss deny store_url loop_mime
send_hit deny store_url loop_302
send_hit deny store_url loop_mime

acl ipbypass dst "/etc/squid/ipbypass.txt"
#acl spliceserver ssl::server_name "/etc/squid/splicesaja.txt"
#acl step1 at_step SslBump1
#acl step2 at_step SslBump2
#acl step3 at_step SslBump3

#ssl_bump splice spliceserver
ssl_bump splice ipbypass
ssl_bump splice localhost
acl 9 at_step SslBump1
acl 10 at_step SslBump2
acl 11 at_step SslBump3
ssl_bump peek 9 all
ssl_bump stare 10 all
ssl_bump splice 11 all

sslcrtd_program /usr/lib/squid/ssl_crtd -s /etc/squid/ssl_db -M 4MB
sslcrtd_children 16 startup=1 idle=1
sslproxy_capath /etc/ssl/certs
sslproxy_cert_error allow all
sslproxy_flags DONT_VERIFY_PEER
# sslproxy_flags NO_SESSION_REUSE
always_direct allow all
ssl_unclean_shutdown on

# ========================================================================================================
# jangan lupa mamam kalo telat mamam nanti salatri gaess! omat disanguan
# ========================================================================================================
acl mediafire url_regex -i ^http:\/\/.*\.*mediafire\.com.*\/(.*[0-9]+\w+\d+[^\&\s]*).*
acl mediafire url_regex -i ^http:\/\/.*\.*mediafire\.com.*\/(\w+\d+[0-9]+[^\&\s]*).*
acl mediafire url_regex -i ^https?:\/\/.*\.(mediafire\.com\/)(.*[0-9]+[^\&\s]*)
acl mediafire url_regex -i ^https?:\/\/.*\.mediafire\.com\/(.*[0-9]+[^\&\s]*)
acl yt-mp3 url_regex -i ^http:\/\/(.*\.*)\W+(aclst\.com).*\.*(mp3.*?)\.*\.*(\w+\d+.*)
acl apple url_regex -i ^http:\/\/(.*\.*apple\.com\W+\d+[0-9]*[^\&\s]*).*
acl apple url_regex -i ^http:\/\/.*\.apple\.com\/([^\&\s]*).*
# ========================================================================================================

# STORE ID
store_id_extras "%>a/%>A %un %>rm myip=%la myport=%lp  %{Referer}>h"
store_id_program /usr/bin/perl /etc/squid/store-id.pl
store_id_children 10 startup=5 idle=2 concurrency=10
store_id_access allow store_rewrite_list
store_id_access allow yt-mp3
store_id_access allow apple
store_id_access allow mediafire
store_id_access allow 1
store_id_access allow 2
store_id_access allow 3
store_id_access allow 4
store_id_access allow 5
store_id_access allow 6
store_id_access allow 7
store_miss deny 7 8
send_hit deny 7 8
store_id_access deny all

# TUNNING CACHE
max_stale 1 week
vary_ignore_expire on
shutdown_lifetime 10 seconds

# REFRESH_PATTERN
# pecinta mamam yuk ah
refresh_pattern -i ^http:\/\/[a-z]+.*(cdninstagram\.com\/.*)\/(.*(jpeg|gif|jpg|png|ico).*) 241920 99% 241920 ignore-reload override-expire ignore-no-store
refresh_pattern -i ^https:\/\/.*\.sndcdn\.com.*?\/(.*\.(json|js|jpeg|gif|svg|jpg|png|ico).*) 1440 100% 129600 override-expire override-lastmod ignore-auth ignore-reload reload-into-ims
refresh_pattern -i ^http.*\.puji\-ganteng\.com.* 432000 100% 432000 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-store ignore-private ignore-auth ignore-must-revalidate
refresh_pattern -i ^https?\:\/\/.*\.*.ggpht.com\/.*  241920 99% 241920 ignore-reload override-expire ignore-no-store
refresh_pattern -i ^https?\:\/\/.*\.*ytimg\.com\/.* 241920 99% 241920 ignore-reload override-expire ignore-no-store
refresh_pattern -i https?:\/\/.*\.xx\.fbcdn\.net\/.*\.(jpg|png) 43830 99% 259200 override-expire override-lastmod ignore-reload
refresh_pattern static\.(xx|ak)\.fbcdn\.net*\.(jpg|gif|png) 241920 99% 241920 ignore-reload override-expire ignore-no-store
refresh_pattern ^https?\:\/\/profile\.ak\.fbcdn.net*\.(jpg|gif|png) 241920 99% 241920 ignore-reload override-expire ignore-no-store
refresh_pattern (akamaihd|fbcdn)\.net 14400 99% 518400  ignore-no-store ignore-private ignore-reload ignore-must-revalidate store-stale
refresh_pattern (audio|video)\/(webm|mp4) 129600 99% 129600 ignore-reload override-expire override-lastmod ignore-must-revalidate  ignore-private ignore-no-store ignore-auth store-stale
refresh_pattern -i \/speedtest\/.*\.(txt|jpg|png|swf)  0  99% 14400 override-expire ignore-reload ignore-private ignore-reload override-lastmod reload-into-ims
refresh_pattern -i (get_video\?|videoplayback\?|videodownload\?|\.mp4|\.webm|\.flv|((audio|video)\/(webm|mp4))) 241920 100% 241920 override-expire ignore-reload ignore-private ignore-no-store ignore-must-revalidate reload-into-ims ignore-auth store-stale
refresh_pattern -i ^https?\:\/\/.*\.googlevideo\.com\/videoplayback.*   10080 99% 43200 override-lastmod override-expire ignore-reload reload-into-ims ignore-private reload-into-ims ignore-auth store-stale
refresh_pattern -i \.*\.*(webm|mp4).* 129600 99% 129600 ignore-reload override-expire override-lastmod ignore-must-revalidate  ignore-private ignore-no-store ignore-auth store-stale
refresh_pattern -i reverbnation.com 1440 99% 14400 override-expire override-lastmod ignore-no-cache ignore-private ignore-must-revalidate ignore-reload store-stale
refresh_pattern ^\.*(streamate.doublepimp.com.*\.js\?|utm\.gif|ads\?|rmxads\.com|ad\.z5x\.net|bh\.contextweb\.com|bstats\.adbrite\.com|a1\.interclick\.com|ad\.trafficmp\.com|ads\.cubics\.com|ad\.xtendmedia\.com|\.googlesyndication\.com|advertising\.com|yieldmanager|game-advertising\.com|pixel\.quantserve\.com|adperium\.com|doubleclick\.net|adserving\.cpxinteractive\.com|syndication\.com|media.fastclick.net).* 1440 99% 14400 ignore-private override-expire ignore-reload ignore-auth max-stale=1440
refresh_pattern \.(ico|video-stats) 1440 99% 14400 override-expire ignore-reload ignore-private ignore-auth override-lastmod ignore-must-revalidate
refresh_pattern ^http://((cbk|mt|khm|mlt|tbn)[0-9]?)\.google\.co(m|\.uk|\.id) 1440 99% 14400 override-expire override-lastmod ignore-reload ignore-private ignore-auth ignore-must-revalidate
refresh_pattern vid\.akm\.dailymotion\.com.*\.on2\? 1440 99% 14400 override-expire override-lastmod
refresh_pattern galleries\.video(\?|sz) 1440 99% 14400 override-expire ignore-reload ignore-must-revalidate ignore-private
refresh_pattern \.wikimapia\.org\/? 1440 99% 14400 override-expire override-lastmod ignore-reload ignore-private
refresh_pattern -i (livescore.com|goal.com|bobet) 0 50% 60
refresh_pattern (photobucket|pbsrc|flickr|yimg|ytimg|twimg|gravatar)\.com.*\.(jp(e?g|e|2)|gif|png|tiff?|bmp|swf|mp(4|3)) 1440 99% 14400 override-expire ignore-reload ignore-private
refresh_pattern (zynga|topeleven|ninjasaga|mafiawars|cityville|farmville|crowdstar|spilcdn|agame|popcap)\.com/.* 1440 99% 14400 override-expire ignore-reload ignore-private
refresh_pattern -i \.*(.*(google\.co\.id))(.*$) 1440 99% 14400 override-expire ignore-reload ignore-private ignore-auth override-lastmod ignore-must-revalidate
#==================================================================================================================================================================================================================================================
# refresh_pattern versi mamam yuk ah
refresh_pattern -i ^https?:\/\/.*\.google\.com\/(.*\.*\/([^\&\s]*)) 1440 99% 14400 override-expire ignore-reload ignore-private ignore-auth override-lastmod ignore-must-revalidate
refresh_pattern -i ^https?:\/\/.*\.whatismyip\.com\/.* 0  99% 14400 override-expire ignore-reload ignore-private ignore-reload override-lastmod reload-into-ims
refresh_pattern -i (gstatic|google.*).*?/images\?.*tbn\: 1440 99% 14400 override-expire ignore-reload ignore-private
refresh_pattern -i \.*(.*(maps)).* 1440 99% 14400 override-expire ignore-reload ignore-private ignore-auth override-lastmod ignore-must-revalidate
refresh_pattern -i \.*(.*(woff[0-9]+)).* 1440 99% 14400 override-expire ignore-reload ignore-private ignore-auth override-lastmod ignore-must-revalidate
refresh_pattern -i ^https?:\/\/.*\.*(google.*)\/([^\&\s]*).* 1440 99% 14400 override-expire ignore-reload ignore-private ignore-auth override-lastmod ignore-must-revalidate
refresh_pattern -i ^https?:\/\/.*(gstatic\.com.*).* 1440 99% 14400 override-expire ignore-reload ignore-private
# mamam yuk
refresh_pattern -i ^http:\/\/(.*\.*apple\.com\W+\d+[0-9]*[^\&\s]*).* 10080 80% 43200 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i ^http:\/\/.*\.apple\.com\/([^\&\s]*).* 10080 80% 43200 override-expire override-lastmod ignore-no-cache ignore-private reload-into-ims ignore-must-revalidate ignore-reload store-stale
refresh_pattern -i ^https?\:\/\/video\-http\.media\-imdb\.com\/(.*\.mp4).* 129600 99% 129600 ignore-reload override-expire override-lastmod ignore-must-revalidate  ignore-private ignore-no-store ignore-auth store-stale
refresh_pattern -i microsoft.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip) 4320 80% 43200 reload-into-ims
refresh_pattern -i windowsupdate.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip) 4320 80% 43200 reload-into-ims
refresh_pattern -i windows.com/.*\.(cab|exe|ms[i|u|f]|[ap]sf|wm[v|a]|dat|zip) 4320 80% 43200 reload-into-ims
#==================================================================================================================================================================================================================================================
refresh_pattern -i \.(3gp|7z|ace|asx|bin|deb|divx|dvr-ms|ram|rpm|exe|inc|cab|qt) 10080 80% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.(rar|jar|gz|tgz|bz2|iso|m1v|m2(v|p)|mo(d|v)|arj|lha|lzh|zip|tar|iop|nzp|pak|mar|msp) 10080 80% 10080 override-expire override-lastmod reload-into-ims ignore-reload
refresh_pattern -i \.(jp(e?g|e|2)|gif|pn[pg]|bm?|tiff?|ico|swf|dat|ad|txt|dll) 10080 80% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.(avi|ac4|mp(e?g|a|e|1|2|3|4)|mk(a|v)|ms(i|u|p)|og(x|v|a|g)|rm|r(a|p)m|snd|vob|webm) 10080 80% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.(pp(t?x)|s|t)|pdf|rtf|wax|wm(a|v)|wmx|wpl|cb(r|z|t)|xl(s?x)|do(c?x)|flv|x-flv) 10080 80% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.(3gp|7z|ace|asx|bin|deb|cup|dvr-ms|ram|rpm|exe|inc|cab|qt) 10080 100% 43800 override-expire override-lastmod ignore-reload ignore-no-store ignore-private ignore-auth ignore-must-revalidate store-stale
refresh_pattern -i \.(rar|jar|gz|tgz|bz2|iso|m1v|m2(v|p)|mo(d|v)|arj|lha|lzh|zip|tar|pak|cup) 10080 100% 43800 override-expire override-lastmod ignore-reload ignore-no-store ignore-private ignore-auth ignore-must-revalidate store-stale
refresh_pattern -i \.(jp(e?g|e|2)|gif|pn[pg]|bm?|tiff?|ico|swf|dat|ad|txt|dll) 10080 100% 43800 override-expire override-lastmod ignore-reload ignore-no-store ignore-private ignore-auth ignore-must-revalidate store-stale
refresh_pattern -i \.(avi|ac4|mp(e?g|a|e|1|2|3|4)|mk(a|v)|ms(i|u|p)|og(x|v|a|g)|rm|r(a|p)m|snd|vob) 10080 100% 43800 override-expire override-lastmod ignore-reload ignore-no-store ignore-private ignore-auth ignore-must-revalidate store-stale
refresh_pattern -i \.(pp(t?x)|s|t)|pdf|rtf|wax|wm(a|v)|wmx|wpl|cb(r|z|t)|xl(s?x)|do(c?x)|flv|x-flv) 10080 100% 43800 override-expire override-lastmod ignore-reload ignore-no-store ignore-private ignore-auth ignore-must-revalidate store-stale
refresh_pattern -i .(html|htm|css|js|xml)$ 1440 75% 40320
refresh_pattern -i .index.(html|htm)$ 0 75% 43800
refresh_pattern -i ^http.*squid\.internal.* 43200 100% 799000 override-expire override-lastmod ignore-reload ignore-no-store ignore-must-revalidate ignore-private ignore-auth

#KEEP THESE LINES AT BOTTOM OF CONFIGURATION
refresh_pattern ^ftp:  1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 0% 4320
refresh_pattern ^ftp:  1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern .  0 0% 4320