On Tue, 13 Sep 2011 08:47:51 -0700, MargaretGillon_at_chromalloy.com
wrote:
>> The best way is probably to use a type of reverse-proxy config for
>> it.
>> Place the above your to_localhost http_access rule after the CONNECT
>> rule:
>>
>> cache_peer 192.168.3.42 parent 8888 0 originserver no-query
>> name=services
>> acl localServices dstdomain .services.chromalloy.local
>> cache_peer_access services allow localServices
>> cache_peer_access services deny all
>> http_access allow localnet localServices
>> Amos
>
> Hi Amos, et al,
>
> I tried your suggestion and then restarted the squid but I still get
> this
> response.
>
> 1315927576.218 7 192.168.100.19 TCP_DENIED/403 2419 GET
> http://192.168.3.42/ - NONE/- text/html
> 1315927579.953 0 192.168.100.19 TCP_DENIED/403 2466 GET
> http://192.168.3.42/ - NONE/- text/html
>
Oh. Sorry I thought the raw-IP version was a test you ran earlier. Try
to avoid raw-IPs, but if you must allow that, add it to the
localServices ACL as well:
acl localServices dstdomain .services.chromalloy.local 192.168.3.42
Amos
Received on Wed Sep 14 2011 - 03:50:26 MDT
This archive was generated by hypermail 2.2.0 : Thu Sep 15 2011 - 12:00:02 MDT