Re: [squid-users] How to write an acl that forces authentication only from specific networks?

From: Sean Boran <sean_at_boran.com>
Date: Thu, 6 Sep 2012 08:33:28 +0200

Thanks, "http_access allow client1 password" works.

Sean

On 5 September 2012 19:46, Yanier Salazar Sanchez
<yanier.salazar_at_eleccav.une.cu> wrote:
>
>
>
>
> -----Original Message-----
> From: boran_at_boran.ch [mailto:boran_at_boran.ch] On Behalf Of Sean Boran
> Sent: Wednesday, September 05, 2012 9:41 AM
> To: squid-users_at_squid-cache.org
> Subject: [squid-users] How to write an acl that forces authentication only
> from specific networks?
>
> On my internal network, no user authenication is currently used, so the acl
> is like acl our_networks src "/etc/squid/our_networks.list"
> http_access allow our_networks
> http_access allow localhost
> http_access deny all
>
> Now I'd like to force authentication only from one IP 10.90.195.47s and
> tried:
> auth_param basic program /usr/local/squid/libexec/basic_ncsa_auth
> /etc/squid/passwd
>
> acl password proxy_auth REQUIRED
> acl client1 src 10.90.195.47/32
>
> add addin the following before "http_access allow our_networks":
> http_access allow password src client1
> change you http_access for this http_access allow client1 password
>
> but that https_acces line is wrong it kill squid :-)
>
> Is there a way of doing this?
>
> Thanks in advance,
> Sean
Received on Thu Sep 06 2012 - 06:33:35 MDT

This archive was generated by hypermail 2.2.0 : Thu Sep 06 2012 - 12:00:02 MDT