Search squid archive

Re: ACL help: blocking non-html objects from particular domains

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Craig Skinner wrote:
On Mon, Oct 15, 2007 at 12:04:41AM +1300, Amos Jeffries wrote:
It should work. What does cache.log / access.log say when (3) is used?


Thanks for the help, I'll work on dstdomains next, logs below:


###################################


acl our_networks src 127.0.0.1/32
http_access allow our_networks
acl suspect-domains dstdom_regex "/etc/squid/suspect-domains.acl"
acl ok-mime-types rep_mime_type -i ^text/html$
http_access allow suspect-domains ok-mime-types
http_access deny all

The request GET http://www.example.com/ is DENIED, because it matched 'all'
TCP_DENIED/403 1375 GET http://www.example.com/ - NONE/- text/html


###################################


acl our_networks src 127.0.0.1/32
http_access allow our_networks
acl suspect-domains dstdom_regex "/etc/squid/suspect-domains.acl"
acl ok-mime-types rep_mime_type -i ^text/html$
http_access deny suspect-domains !ok-mime-types
http_access allow suspect-domains
http_access deny all

The request GET http://www.example.com/ is DENIED, because it matched 'ok-mime-types'
TCP_DENIED/403 1375 GET http://www.example.com/ - NONE/- text/html


Doh!. I'm just going to go aside and kick myself a bit.

  reP_mime_types is a REPLY acl.

it should be used with http_reply_access  :-P


Amos

[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux