Re: allowing dial in users

From: Joel Taqueban <jtaqueba@dont-contact.us>
Date: Mon, 10 Apr 2000 18:33:19 +0800

Kendall,

I'm sorry I have to bring this issue again. Last time I did already placed
the ACL on my squid.conf but was surprised to know that my remote users could
still access the Internet when in fact I want them only to access intranet
sites. I already have this on my squid.conf file

acl allowed_remotehost src 199.40.218.10-11/255.255.255.0

http_access allow allowed_remotehost allowed_sites
http_access deny all

Anything else I missed?

Kendall Lister wrote:

> On Mon, 3 Apr 2000, Joel Taqueban wrote:
>
> > Following is my access control list:
> >
> > acl allowed_time time S M T W H F A 06:00-21:00
> > acl allowed_sites dstdomain dhl.com
> >
> > http_access allow allowed_time
> > http_access allow allowed_sites
> > http_access deny all
> >
> > How do I associate 'acl allowed_remotehost src
> > 199.40.218.10-11/255.255.255.0' with 'acl allowed_sites dstdomain
> > dhl.com'
>
> Add a new ACL:
>
> acl allowed_remotehost src 199.40.218.10-11/255.255.255.0
>
> and then use it in conjunction with your current http_access:
>
> http_access allow allowed_remotehost allowed_sites
> http_access deny all
>
> The result should be a logical AND of the two ACLs.
>
> --
> Kendall Lister, Systems Operator for Charon I.S. - kendall@charon.net.au
> Charon Information Services - Friendly, Cheap Melbourne ISP: 9589 7781
Received on Mon Apr 10 2000 - 04:32:13 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:52:53 MST