Re: [squid-users] Problem understanding acl

From: Schelstraete Bart <bart@dont-contact.us>
Date: Wed, 15 Feb 2006 15:46:52 +0100

On Wed, 2006-02-15 at 10:23 -0400, Chris Mason (Lists) wrote:
> From:
> Chris Mason (Lists)
> <lists@masonc.com>
> Reply-To:
> lists@masonc.com
> To:
> squid-users@squid-cache.org
> Subject:
> [squid-users] Problem understanding
> acl
> Date:
> Wed, 15 Feb 2006 10:23:43 -0400
> (15:23 CET)
> Mailer:
> Thunderbird 1.5 (Windows/20051201)
>
>
> I want to have the following scenario but I can't understand how to do
> it
>
> # Employee general access to a list of sites
> acl allowed-sites dstdomain .thisdomain.com .thatdomain.com
> http_access allow allowed-sites
>
> # Some employees listed get access to all EXCEPT the banned sites
> acl banned_sites dstdomain .abc.com .msn.com .hotmail.com .go.com
> .playboy.com
> acl password_access proxy_auth someone someone-else anotheruser
> http_access allow password_access but deny the banned_lists
>
> # And finally deny all other access to this proxy
> http_access allow localhost
> http_access deny all

Hi,

As far as I understand, it's just like this:

acl allowed-sites dstdomain .thisdomain.com .thatdomain.com
acl banned_sites
dstdomain .abc.com .msn.com .hotmail.com .go.com .playboy.com
acl password_access proxy_auth someone someone-else anotheruser

##Order is important
http_access allow allowed-sites
http_access deny banned_sites
http_access allow password_access
http_access deny all

Bart

--
Schelstraete Bart 
http://www.schelstraete.org 
bart@schelstraete.org
15:43:27 up 3 days, 21:54, 3 users, load average: 1.83, 1.88, 1.78
Received on Wed Feb 15 2006 - 07:47:09 MST

This archive was generated by hypermail pre-2.1.9 : Wed Mar 01 2006 - 12:00:03 MST