Squid_ The Definitive Guide - Duane Wessels [201]
Default
reload_into_ims off
Example
reload_into_ims on
Related
refresh_pattern
Name
always_direct
Synopsis
The always_direct access rules define a class of requests that must always be forwarded directly to the origin server. For these, Squid doesn't query or otherwise consider any neighbor caches. See Section 10.4.4.
Syntax
always_direct allow|deny [!]ACLname ...
Default
No default
Example
acl LocalServers dst 172.17.0.0/24
always_direct allow LocalServers
Related
acl, never_direct, prefer_direct, nonhierarchical_direct, minimum_direct_hops, minimum_direct_rtt, cache_peer_access
Name
never_direct
Synopsis
The never_direct access rules define a class of requests that must never be forwarded to the origin server. For these, Squid must select an appropriate neighbor cache to handle the request. See Section 10.4.3.
Syntax
never_direct allow|deny [!]ACLname ...
Default
No default
Example
acl SpecialServers dstdomain .example.com
never_direct allow SpecialServers
Related
acl, always_direct, prefer_direct, nonhierarchical_direct, minimum_direct_hops, minimum_direct_rtt, cache_peer_access
Name
header_access
Synopsis
This directive defines a set of access rules for filtering HTTP headers from both requests and responses. You can use it to remove headers that may violate your privacy, or that cause interoperation issues. For example, this configuration removes Cookie headers sent to a well-known web advertising company:
acl DC dstdomain .doubleclick.net
header_access Cookie deny DC
The header-name field must be one of the HTTP headers Squid knows about or one of the keywords Other or All. Squid currently knows the following HTTP headers:
Accept
Accept-Charset
Accept-Encoding
Accept-Language
Accept-Ranges
Age
Allow
Authentication-Info
Authorization
Cache-Control
Connection
Content-Base
Content-Encoding
Content-Language
Content-Length
Content-Location
Content-MD5
Content-Range
Content-Type
Cookie
Date
ETag
Expires
From
Host
If-Match
If-Modified-Since
If-None-Match
If-Range
Last-Modified
Link
Location
Max-Forwards
Mime-Version
Negotiate
Pragma
Proxy-Authenticate
Proxy-Authentication-Info
Proxy-Authorization
Proxy-Connection
Public
Range
Referer
Request-Range
Retry-After
Server
Set-Cookie
Title
Transfer-Encoding
Upgrade
User-Agent
Vary
Via
WWW-Authenticate
Warning
X-Accelerator-Vary
X-Cache
X-Cache-Lookup
X-Forwarded-For
X-Request-URI
X-Squid-Error
Unfortunately, you can't refer to an unknown header individually. The best you can do is use the keyword Other to refer to all unknown HTTP headers. The keyword All refers to all (known and unknown) HTTP headers.
Note that if you deny the Via header, Squid can't detect forwarding loops (see Section 10.2).
* * *
Warning
Removing headers from requests and responses is a violation of HTTP.
* * *
Syntax
header_access header-name allow|deny [!]ACLname ...
Default
No default
Example
header_access From deny All
Related
acl, header_replace
Name
header_replace
Synopsis
This directive works in conjunction with header_access. If you use header_replace, Squid replaces HTTP headers that are denied (removed) by an header_access rule. In other words, an HTTP header must be filtered out by header_access before it can be replaced by header_replace.
header_replace isn't especially flexible. You can only define one replacement value for each header. You can't, for example, use one value for some requests and a different value for others.
* * *
Warning
Changing HTTP request and response headers is a violation of HTTP.
* * *
Syntax
header_replace header-name
string
Default
No default
Example
header_replace User-Agent Nutscrape/1.0 (CP/M; 8-bit)
Related
header_access
Name
icon_directory
Synopsis
This directive specifies the location of the icons Squid uses in FTP and Gopher directory listings. The icon filenames are defined in mime.conf (see