Below I've attached part of my squid.conf, I am currently using
squid-2.3.STABLE3 on a Freebsd 3.4-stable box. I'm currently using ipfilter
to divert traffic, and make a transparent proxy.
My current configuration unfortunate has the result of being an open proxy,
on the external interface as well. Is there there a way with squid to
prevent this? or do I need to set a ipfw rule?
Thanks
Sameer
http_port 3128
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl ghur src 10.0.0.0/255.255.255.0
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow ghur
http_access deny all
icp_access allow all
miss_access allow all
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
Received on Mon May 29 2000 - 23:58:42 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:53:36 MST