On 07.09.06 08:49, kashif Mazhar wrote:
> Few days back i implement a two lines code in my squid.conf to
> block selected users from extra downloads , i restcirt them in a way
> that they cannot download more than 10-MB.(this is for restricted
> users).
>
> acl limit urlpath_regex "/etc/squid/limit"
> and linit file contains 2 IPs
>
> 172.16.18.XX
> 172.16.18.XXX
> 172.16.18.X
1. they are 3, not 2.
2. urlpath_regex matches the URL people access, it only matches if they will
fetch from addresses like:
http://172.16.18.XXX/something
but also:
http://www.example.com/check_ip?ip=172.16.18.XXX
you should use
acl limit src "/etc/squid/limit"
to match exact IP's 172.16.18.XX, 172.16.18.XXX and 172.16.18.X.
> after few days i came to knwo ppl who have ip in the range of
> 172.16.18.XXX subnet they all cannot download more than 10-MB it;'s
> simply means whole subnet is got blocked.
3. regex "172.16.18.X" matches 172.16.18.XX, 172.16.18.XXX and even
172.16.18.XYZ. using regexp's is also very ineffective. However
-- Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. The 3 biggets disasters: Hiroshima 45, Tschernobyl 86, Windows 95Received on Thu Sep 07 2006 - 02:15:56 MDT
This archive was generated by hypermail pre-2.1.9 : Sun Oct 01 2006 - 12:00:03 MDT