Re: ACL and/or http_access not working in 3.1 beta

From: Steve Snyder <swsnyder_at_snydernet.net>
Date: Sun, 26 Oct 2008 16:42:47 -0400

On Sunday 26 October 2008 03:16:10 pm Henrik Nordstrom wrote:
> On sön, 2008-10-26 at 14:23 -0400, Steve Snyder wrote:
> > On Sunday 26 October 2008 02:11:28 pm Henrik Nordstrom wrote:
> > > On sön, 2008-10-26 at 11:11 -0400, Steve Snyder wrote:
> > > > Example #1:
> > > >
> > > > acl snapcom dstdomain .snap.com
> > > > http_access deny snapcom
> > > >
> > > > Example #2:
> > > >
> > > > acl pogotime time SMTFA 00:00-23:59
> > > > acl pogosite dstdomain .pogo.com
> > > > http_access deny pogosite pogotime
> > >
> > > Where are these in relation to your other http_access rules?
> >
> > The acl / http_access statements are at the bottom of the
> > squid.conf file.
>
> That probably won't work very well in any squid release...
>
> http_access is processed top-down, and the first matching http_access
> line determines the verdict for the request.

Yep, that was it. I moved my acl/http_access statements to just above
the ones defined by default and all is well.

Thanks.
Received on Sun Oct 26 2008 - 21:10:55 MDT

This archive was generated by hypermail 2.2.0 : Mon Oct 27 2008 - 12:00:07 MDT