Hi Amos, I have been working with your suggestion for hours now. Suggested: acl noAuth src all acl AuthUsers proxy_auth REQUIRED http_access allow freesites http_access allow AuthUsers deny_info http://login.mydomain.local/?referer=%s noAuth http_access deny !AuthUsers noAuth http_access deny all Working (shows custom page): acl noAuth src all acl AuthUsers proxy_auth REQUIRED http_access allow freesites http_access allow AuthUsers deny_info ERR_CUSTOM_ACCESS_DENIED AuthUsers http_access deny !AuthUsers noAuth http_access deny all Not working (no external error page, url works fine directly): acl noAuth src all acl AuthUsers proxy_auth REQUIRED http_access allow freesites http_access allow AuthUsers deny_info http://login.flamboree.local/?url=%U AuthUsers http_access deny !AuthUsers noAuth http_access deny all Also a problem is that for the 2nd acl the browser(and thus squid) asks for a user/pass but I'd like this to happen after the custom login page is shown and the user clicks on 'continue'. Maybe I'm asking the impossible... I had a nice way for this captive portal but suddenly I'm forced to use a terminal server so I can't use source IP's anymore. :-( I'm using 2.7stable6 for windows. Thanks again. Kind regards, Philippe
