Hi, l'm setting up squid to act as a web accelerator only, it will sit at www.mydomain.com and forward to several web servers (which are behind the firewall and not publicly accessible). As I understand it, the following config forwards ALL requests to one of the three cache_peer web servers, including a "Host:" HTTP header, and there's no need for using acl's. Is that correct? Are there any security issues here? Thanks. ############ http_port 80 accel vhost collapsed_forwarding on acl all src 0/0 http_access allow all cache_peer 10.x.x.1 parent 80 0 no-query originserver login=PASS round-robin cache_peer 10.x.x.2 parent 80 0 no-query originserver login=PASS round-robin cache_peer 10.x.x.3 parent 80 0 no-query originserver login=PASS round-robin ############
