If your proxy server only runs squid then an easy way to deny access by IP
address is to place the lines
route add "ip address" lo
into /etc/rc.d/rc.local
This makes sure that a proxy abuser does not access squid at all.
Simple one liner instead of a two line acl or a more complex IP tables
firewall line.
For finer control we recommend IPTables or ACLs
On Sunday 18 July 2004 08:09 pm, Christoph Haas wrote:
> On Sun, Jul 18, 2004 at 12:44:50AM +0530, komal wrote:
> > I want to prevent users for browsing by ip address in place of URLs . Any
> > pointers ?
>
> Use "acl src ..." or "acl dst ...".
>
> Christoph
-- Khawar Nehal CEO Applied Technology Research Center (ATRC) C-55 Block A KDA Officers Karachi 75260 Pakistan Voice : 92-21-4980523 Mobile : 92-300-9284698 Email : khawar@atrc.net.pk Assistant Registrar Preston Institute of Management, Science and Technology (PIMSAT) 177/2 IEP Building, Opposite Regent Plaza (Formerly Taj Mahal Hotel) Shahrah-a-Faisal, Karachi, Pakistan Voice : 92-21-7789888 to 90 Fax : 92-21-7789891 Email : khawar@pimsat-khi.edu.pk General Inqiries : info@pimsat-khi.edu.pkReceived on Mon Jul 19 2004 - 01:29:33 MDT
This archive was generated by hypermail pre-2.1.9 : Sun Aug 01 2004 - 12:00:02 MDT