[geeks] Squid ACL question
Bill Bradford
mrbill at mrbill.net
Fri Oct 21 13:13:58 CDT 2005
On Fri, Oct 21, 2005 at 01:09:19PM -0500, Bill Bradford wrote:
> I'm trying to setup Squid so that only certain IPs can use it, and then
> only to certain (explicitly named) web sites - everything else is
> denied. However, I'm having trouble with the ACLs. ANybody got a clue?
Okay, after more fiddling, this worked:
acl first_networks src xxx.yyy.0.0/255.255.0.0
acl second_networks src xxx.yyy.104.0/255.255.255.0
acl safe_sites1 dstdomain .microsoft.com .borland.com .sun.com .hp.com
acl safe_sites2 dstdomain .compaq.com .dell.com .redhat.com .symantec.com
acl safe_sites3 dstdomain .winzip.com .adobe.com .cisco.com .intel.com
acl safe_sites4 dstdomain .broadcom.com .3com.com
http_access allow localhost
http_access allow first_networks
http_access allow second_networks
http_access allow safe_sites1
http_access allow safe_sites2
http_access allow safe_sites3
http_access allow safe_sites4
http_access deny all
http_reply_access allow safe_sites1
http_reply_access allow safe_sites2
http_reply_access allow safe_sites3
http_reply_access allow safe_sites4
Bill
--
Bill Bradford
Houston, Texas
More information about the geeks
mailing list