Hola amigos del foro, tengo el siguiente problema, me he configurado un servidor proxy nada mas, como soy nuevo en esto de linux al momento de instalar centos le di de baja a los servicios SElinux e IPTABLES y solo deje a mi servidor como PROXY, pero resulta que cuando mis usurios quieren tener una VIDEOLLAMDA NO SALEN, Y LAS LLAMDAS SE OYEN COMO ROBOTIZADAS, HE LEIDO SOBRE COMO ABRIR PUERTOS EN SQUID, PERO SIN EXITO, A CONTINUACION LE DEJO LAS LINEAS DE COMANDOS DE COMO TENGO CONFIGUIRADO MI PROXY, ESPERO ME PUEDAN AYUDAR, UN SALUDOS DESDE TUXTLA GUTIERREZ, CHIAPAS. MEXICO

#Recommended minimum configuration:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl miredlocal src "/etc/squid/permitidos"
acl sitiosdenegados url_regex "/etc/squid/sitiosdenegados"
acl listaextensiones urlpath_regex "/etc/squid/listaextensiones"
acl inocentes url_regex "/etc/squid/sitiosinocentes"
acl download rep_mime_type ^.*video.*
acl download rep_mime_type ^.*audio.*
acl useragent browser -i ^.*NSPlayer.*
acl useragent browser -i ^.*player.*
acl useragent browser -i ^.*Windows-Media-Player.*
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 81 #http transparencia
acl Safe_ports port 82 #http ecosur
acl Safe_ports port 8003 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 993 # gmail y outlook
acl Safe_ports port 587 # gmail y outlook
acl CONNECT method CONNECT


#Default:
# http_access deny all
#
#Recommended minimum configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access deny manager
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
#
# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS

# Example rule allowing access from your local networks. Adapt
# to list your (internal) IP networks from where browsing should
# be allowed
#acl our_networks src 192.168.1.0/24 192.168.2.0/24
#http_access allow our_networks

# And finally deny all other access to this proxy
http_access allow localhost
http_access allow miredlocal !listaextensiones !sitiosdenegados !useragent !download
http_access allow all inocentes
http_access deny all