Access Denied

From: Quang Truong <quang@dont-contact.us>
Date: Thu, 18 May 2000 09:52:30 -0500

Hi,

I just downloaded Squid 2.3 on the linux. I also set up an IP aliases for
the eth0 interface so I can have additional IP address for my apache web
server. I set up the apache server on 63.90.72.91 listen at port 80 and the
Squid on another IP 63.90.72.67 at port 80. Squid was set up as an
accelerator. When I access the Squid URL which is httpd://63.90.72.67 I got
the following error:

        The request Url could not be retrieved
        While trying to retrieve the URL://63.90.72.67 <URL://63.90.72.67>

        The following error was encountered:
        Access Denied.

The following is my access control list.

#Defaults:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl server1 dst 63.90.72.67/255.255.255.0
acl server2 dst 63.90.72.91/255.255.255.0
acl server3 src 63.90.72.81/255.255.255.0
acl server4 src 63.90.72.82/255.255.255.0

# TAG: http_access
# Allowing or Denying access based on defined access lists
#
# Access to the HTTP port:
# http_access allow|deny [!]aclname ...
#
# Access to the ICP port:
# icp_access allow|deny [!]aclname ...
#
# NOTE on default values:
#
# If there are no "access" lines present, the default is to allow
# the request.
#
# If none of the "access" lines cause a match, the default is the
# opposite of the last line in the list. If the last line was
# deny, then the default is allow. Conversely, if the last line
# is allow, the default will be deny. For these reasons, it is a
# good idea to have an "deny all" or "allow all" entry at the end
# of your access lists to avoid potential confusion.
#
#Default configuration:
http_access allow manager
http_access allow localhost
http_access allow !Safe_ports
http_access allow CONNECT !SSL_ports
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#
http_access allow server1
http_access allow server2
http_access allow server3
http_access allow server4
http_access deny all
debug_options ALL,1 28,9

Can any one help?

Best regards,

Received on Thu May 18 2000 - 08:45:41 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:53:31 MST