Re: ACL problem.

From: Arjan de Vet <Arjan.deVet@dont-contact.us>
Date: Mon, 4 Aug 1997 01:05:40 +0200 (CEST)

Andrew Brennan:

> I'm confused by the first note in the patch documentation. "Make
> sure it is the last one in the list and the only proxy_auth type
> ACL in the list" ... do you mean the last acl defined (the list of
> acl definitions) or the last acl used (the http_access lines) ??

The last ACL name used in an http_access line should be the proxy_auth
type ACL.

> I have an odd situation. I need to permit access to ISP users via
> passwords. I have local users to permit as well. No biggie.
>
> The ringer is that I have an IP/IPX gateway that "provides" access
> for good and bad users ... so I need to password restrict this as
> well as the ISP access. Something like:
>
> acl IPXgate src 192.0.2.23/255.255.255.255
> acl local src 192.0.2.0/255.255.255.0
> acl passwd proxy_auth /etc/squid/passwd
>
> http_access allow IPXgate passwd
> http_access allow local
> http_access allow all passwd
> http_access deny all
>
> The IPXgate is in the same subnet as the local systems, just to
> make things interesting. :^( Actually, just to liven things up a
> bit more ... I have multiple subnets, multiple IP/IPX gateways and
> would like to do this across the whole mess.

This should work the way you describe it.

Arjan
Received on Sun Aug 03 1997 - 16:15:31 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:35:55 MST