On 28/01/2012 12:19 p.m., Carlos Manuel Trepeu Pupo wrote:
> On 1/26/12, Amos Jeffries<squid3_at_treenet.co.nz> wrote:
>> On 27/01/2012 2:46 p.m., Carlos Manuel Trepeu Pupo wrote:
>>> I have squid 3.0 STABLE1 giving service to 340 clients. I need to
>>> limit the maxconn to 20, but I need to know if I put 192.168.10.0/24
>>> will limit each IP to 20 or the entire /24 to 20. In case that the
>>> rule it's for the entire /24, so I need to create the rule for each IP
>>> ?
>> Put "192.168.10.0/24" where exactly?
> Sorry for the explication !!
>
>> In the maxconn ACL? Wont work, maxconn takes a single value.
>> In a separate unrelated src ACL? notice how src != maxconn. And its
>> test result is equally independent when tested. src looks for an
>> individual IP (the packet src IP) in a set.
>>
>> Amos
>>
> # I have this:
> acl client src 10.10.10.0/24
> acl client src 10.71.0.0/24
> acl client src 10.1.0.0/24
>
> acl max_conn maxconn 10
>
> http_access deny client max_conn
>
> # The idea of above configuration is allow a maximum of 10 http
> connection from each IP from clients networks to access the proxy.
>
> I need to know if this work or this configuration allow just 10 http
> connection between all !!!
Okay. It is maxconn for each individual IP.
Amos
Received on Sat Jan 28 2012 - 00:12:14 MST
This archive was generated by hypermail 2.2.0 : Sat Jan 28 2012 - 12:00:03 MST