On Wed, 2006-02-15 at 10:23 -0400, Chris Mason (Lists) wrote: > From: > Chris Mason (Lists) > <lists@xxxxxxxxxx> > Reply-To: > lists@xxxxxxxxxx > To: > squid-users@xxxxxxxxxxxxxxx > Subject: > Problem understanding > acl > Date: > Wed, 15 Feb 2006 10:23:43 -0400 > (15:23 CET) > Mailer: > Thunderbird 1.5 (Windows/20051201) > > > I want to have the following scenario but I can't understand how to do > it > > # Employee general access to a list of sites > acl allowed-sites dstdomain .thisdomain.com .thatdomain.com > http_access allow allowed-sites > > # Some employees listed get access to all EXCEPT the banned sites > acl banned_sites dstdomain .abc.com .msn.com .hotmail.com .go.com > .playboy.com > acl password_access proxy_auth someone someone-else anotheruser > http_access allow password_access but deny the banned_lists > > # And finally deny all other access to this proxy > http_access allow localhost > http_access deny all Hi, As far as I understand, it's just like this: acl allowed-sites dstdomain .thisdomain.com .thatdomain.com acl banned_sites dstdomain .abc.com .msn.com .hotmail.com .go.com .playboy.com acl password_access proxy_auth someone someone-else anotheruser ##Order is important http_access allow allowed-sites http_access deny banned_sites http_access allow password_access http_access deny all Bart -- Schelstraete Bart http://www.schelstraete.org bart@xxxxxxxxxxxxxxxx 15:43:27 up 3 days, 21:54, 3 users, load average: 1.83, 1.88, 1.78
