Re: [squid-users] Guest network

From: JC Putter <jcputter_at_gmail.com>
Date: Thu, 10 Oct 2013 09:50:21 +0200

Thanks! much appreciated

On Thu, Oct 10, 2013 at 6:37 AM, Amos Jeffries <squid3_at_treenet.co.nz> wrote:
> On 10/10/2013 12:40 p.m., Leonardo Rodrigues wrote:
>>
>>
>> No need for two instances ...
>>
>> just get squid listening on how many ports you need it to:
>>
>> http_port port1
>> http_port port2
>> ...
>> http_port portN
>>
>> create ACLs for each port
>>
>> acl port1 myport port1
>> acl port1 myport port2
>> ...
>> acl portN myport portN
>
>
> Small alteration: Use myportname instead of myport.
>
> NP: The 'name' of a http_port in Squid defaults to the exact text string
> used as the first parameter (host:port details) and can be set to something
> else using the name=X option.
>
> This is important because "myport" ACL matches TCP connection details after
> NAT/TPROXY discovery which are not always the same as the http_port listener
> details.
>
>
>
>> and get all your http_access rules with the appropriate port ACLs as
>> well, thus giving completly different policies depending on the proxy port
>> used.
>>
>>
>> http_access allow port1 other_rule
>> http_access deny port1 other_rule
>> etc etc
>>
>>
>
> Amos
Received on Thu Oct 10 2013 - 07:50:29 MDT

This archive was generated by hypermail 2.2.0 : Thu Oct 10 2013 - 12:00:05 MDT