A 10 MB flat file of domains contains roughly 500000 domains.
You also use time-based ACLs and ACLs based on IP address range.
This config can be implemented using ufdbGuard,
a free URL rewriter for Squid.
ufdbGuard is better maintained than squidGuard and has more
features.
Marcus
On 04/24/2012 12:34 PM, Eliezer Croitoru wrote:
On 24/04/2012 18:14, Muhammad Yousuf Khan wrote:
ok i trim down config file to this as you suggested of blocking
whitelist to local net.. let see how things work tommorw. ill update.
but block list is like 10MB big do you think it could be the
problem.as every query has to be matched with 10 MB database.
?
in any case a dstdomain of 10MB is a very bad idea from what i know.
one thing about dstdomain is that squid must validate the request dns records and it will take more bandwidth on dns queries.
if you still dont have local dns server for cahing only this is the time to add it.
i think that 10MB of domains can be optimized into some basic DST DOMAINS REGEX and some blacklist DSTDOMS REGEX.
i think that some db application for this kind of amount of dstdoms can much more effective.
you can also use squidguard for that.
if you can share some (1MB) of the dstdoms of the whole list i might be able to try to optimize it in a way.
Regards,
Eliezer