RE: [squid-users] ACL problem

From: Henrik Nordstrom <hno@dont-contact.us>
Date: 13 May 2003 17:54:51 +0200

tis 2003-05-13 klockan 15.48 skrev Balzi Andrea:
> At 15.06 13/05/2003, Henrik Nordstrom wrote:
> >So exacly what have you configured? Especially your http_access rules is
> >important. Probably you have a rule which prevents another from working.
>
> #Access-List
> acl QUERY urlpath_regex cgi-bin \? .cgi
> acl metodi method CONNECT POST
> acl all src 0.0.0.0/0.0.0.0
> acl localhost src 127.0.0.1/255.255.255.255
> acl ipunico max_user_ip -s 1
> acl utenti proxy_auth_regex -i "/usr/share/squid/blacklists/interne/utenti"
> acl block dstdomain .google.it
> #Applicazione Access-List
> http_access deny ipunico
> http_access deny block
> http_access allow utenti
> http_access deny all
> no_cache deny QUERY
> no_cache deny metodi

Works here..

authenticated users can access anything except for *.google.it
(including just google.it) where they get blocked by squid.

This is using what will become 2.5.STABLE3, but there has not been any
changes relating to this since 2.5.STABLE1 that I know of.

Regards
Henrik

-- 
Donations welcome if you consider my Free Squid support helpful.
https://www.paypal.com/xclick/business=hno%40squid-cache.org
Please consult the Squid FAQ and other available documentation before
asking Squid questions, and use the squid-users mailing-list when no
answer can be found. Private support questions is only answered
for a fee or as part of a commercial Squid support contract.
If you need commercial Squid support or cost effective Squid and
firewall appliances please refer to MARA Systems AB, Sweden
http://www.marasystems.com/, info@marasystems.com
Received on Tue May 13 2003 - 09:55:11 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:16:38 MST