linux使用squid做路由 如何使用unblock youku进行全局

以透明代理方式工作在3128/tcp

http_port 127.0.0.1:3129
http_port 127.0.0.1:3128 transparent

仅允许本地流量

acl thisvps src ipv4空
acl thisvps src ipv6空
acl chinaaddress url_regex -i “/etc/chinaaddress.txt” //来源http://pac.uku.im/regex
http_access allow localhost
http_access allow thisvps

64M内存缓存,6G硬盘做缓存

cache_peer proxy.uku.im parent 443 0 proxy-only name=china
cache_peer_access china allow chinaaddress

cache_peer_access china deny all
never_direct allow chinaaddress
cache_mem 64 MB
cache_dir ufs /usr/wwwcache 6000 16 256

日志

cache_log /tmp/squid.log

一些优化参数

maximum_object_size 409600 KB
maximum_object_size_in_memory 64 KB
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|?) 0 0% 0
refresh_pattern .(jpg|png|gif|mp3|xml|html|htm|css|js|mp4|zip|rar|mkv|flv) 1440 50% 2880 ignore-reload
refresh_pattern . 0 20% 4320


路由方面直接iptables 80 redirect了,没什么问题
log 里面显示并不能正常工作
2017/04/04 12:08:43 kid1| temporary disabling (Forbidden) digest from proxy.uku.im
所以求助如何设置才好

把Lan与Wan上的DNS设成 158.69.209.100, 45.32.72.192或45.63.69.42就能实现全局, 比pac稳定, 毕竟pac服务器老是当机。