You need to combine the wanted acl's on your http_access rules.
http_access is a ordered list of rules. The first rule that mathes (all
listed acl elements are true) determines the outcome.
Regards
Henrik Nordström
Squid Hacker
"Lam, Eric" wrote:
>
> Help. I am interested in creating a ACL list where it blocks/filters all
> websites by default, except the ones I specified. At the same time, I wish
> to allow port 80 and 8080 to be allowed. By default, Squid allows port 80.
> Once I add ...
>
> acl Safe_ports port 80 8080
> acl GOOD dst 10.0.0.1
> acl BAD dst 0.0.0.0/0.0.0.0
> http_access allow GOOD
> http_access deny BAD
> htp_access deny !Safe_ports
>
> ... it seems to open all ports and all ip's, good or bad. Can someone show
> me what I did wrong, and correct it? Thanks.
>
> Also, am I correct to think that Squid allows port 80 default?
>
> Eric
Received on Tue Dec 04 2001 - 03:42:33 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:05:10 MST