hosts: Deploy Squid on gw1

Running Squid on the firewall makes sense; it's a sort of layer-7
firewall, after all.  There's not much storage on that machine, though
so we don't really want to cache anything.  In fact, it's only purpose
is to allow very limited web access for certain applications.  All
outbound traffic is blocked, with two exceptions:

* Fedora package repositories (for the UniFi controller server)
* Google Fonts (for Invoice Ninja)

hosts.gw

@@ -9,3 +9,6 @@ gw1.pyrocufflink.blue
 
 [nut-monitor]
 gw1.pyrocufflink.blue
+
+[squid]
+gw1.pyrocufflink.blue