Re: [squid-users] Cannot get dstdomain to block out list

From: Andreas Pettersson <andpet@dont-contact.us>
Date: Mon, 29 Mar 2004 17:11:10 +0200

"acl banned_sites dstdomain "/usr/local/squid/ext/domainlist2.txt"

Could it be the "ext" that should say "etc" instead?

/Andreas

----- Original Message -----
From: "Jerry Robles de Medina" <jroblesdemedina@godo.sr>
To: <squid-users@squid-cache.org>
Sent: Monday, March 29, 2004 4:19 PM
Subject: [squid-users] Cannot get dstdomain to block out list

> Hi all,
> I have setup acl to block some lists with domain names and one with words.
> The one with words works but the one with dstdomain does not work!
> Here is my acl config:
>
> acl all src 0.0.0.0/0.0.0.0
> acl localhost src 127.0.0.1/255.255.255.255
>
> acl SSL_ports port 445 443 441 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 81 # smoothwall http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 445 443 441 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> acl banned_sites dstdomain "/usr/local/squid/ext/domainlist2.txt"
> acl ban1 dstdom_regex "/usr/local/squid/etc/porn.txt"
> acl ban2 url_regex "/usr/local/squid/etc/porn.txt"
> acl fulltime src 100.100.100.137 100.100.100.30 100.100.100.135
100.100.100.31 100.100.100.111 100.100.100.56 100.100.100.42 100.100.100.190
100.100.100.46 100.100.100.45 100.100.100.225
> acl medewerkers src 100.100.100.100/24
> acl fulltime time MTWHFA 06:00-23:55
> acl morning time MTWHFA 06:30-08:00
> acl evening time MTWHFA 15:30-17:30
>
> http_access deny banned_sites
> http_access deny ban2
> http_access deny ban1
> http_access allow fulltime fulltime
> http_access deny fulltime
> http_access allow medewerkers morning
> http_access allow medewerkers evening
> http_access deny medewerkers
> http_access allow localhost
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localnet
> http_access deny all
>
>
> Please help,
>
> Jerry
Received on Mon Mar 29 2004 - 08:05:21 MST

This archive was generated by hypermail pre-2.1.9 : Thu Apr 01 2004 - 12:00:03 MST