Search squid archive

Re: Re: Conf squid cache [

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



squidACL wrote:
my proxy working very well but after the update i have this probleme my squid
conf:

<snip>
>
acl ntlm proxy_auth REQUIRED
>
<snip>

acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network

<snip>

http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports


<paste>
http_access deny reefer
http_access deny gate1
http_access deny gate2
http_access deny GATE
</paste>

or even this instead of the above four lines:

 acl gates src 10.60.3.61 10.60.3.72 10.60.3.73 10.60.3.86
 http_access deny gates

http_access allow localnet

http_access allow localhost

<paste>
http_access allow ntlm
</paste>

http_access deny all
>
<snip>
>
the people that are in our domaine they don't need to use the login and
password just the people that come from outside
I use squid/3.0.STABLE20

Thank you

The http_access rules are processed top-down.

The first thing you do is to deny the "gate"* machines access. The second is you require everybody else to authenticate.


Please define "our domaine".

If you mean by that the users in the local authentication domain. Then no in order identify them they MUST be logged in first.

If you mean machines on the local network IP ranges, then you need to adjust your http_access logics to specify that condition. See my pastes above.


Amos
--
Please be using
  Current Stable Squid 2.7.STABLE9 or 3.1.5


[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux