On Sun, May 23, 2004 at 03:35:13PM -0500, jorn wrote:
> Hello,
>
> I searched the archives, edited my ACLs, but I can't figure this one
> out. A Version 2.5.STABLE5 that seemed to be working fine is now
> rejecting users with an access denied message. My access log has
> entries like the following:
>
>
> 1085339278.198 2 192.168.253.14 TCP_DENIED/403 1352 GET
> http://slashdot.org/ - NONE/- text/html
> 1085340459.256 2 192.168.253.14 TCP_DENIED/403 1356 GET
> http://macintouch.com/ - NONE/- text/html
>
>
> My squid box is sitting in a DMZ behind the firewall, so I'd like to
> just run pretty lax security on it. The conf file, which I'm trying to
> keep simple, has the following ACLs:
>
> acl all src 0.0.0.0/255.255.255.255
> http_access allow src 192.168.0.0/255.255.0.0
> http_access allow all # Added out of frustration
> http_access deny all
>
> Thoughts?
Try this:
debug_options ALL,1 33,2
and watch your cache.log to see which ACL blocks you.
Christoph
-- ~ ~ ".signature" [Modified] 3 lines --100%-- 3,41 AllReceived on Sun May 23 2004 - 14:57:46 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Jun 01 2004 - 12:00:02 MDT