On 28/01/2012 12:19 p.m., Carlos Manuel Trepeu Pupo wrote:
On 1/26/12, Amos Jeffries<squid3@xxxxxxxxxxxxx> wrote:
On 27/01/2012 2:46 p.m., Carlos Manuel Trepeu Pupo wrote:
I have squid 3.0 STABLE1 giving service to 340 clients. I need to
limit the maxconn to 20, but I need to know if I put 192.168.10.0/24
will limit each IP to 20 or the entire /24 to 20. In case that the
rule it's for the entire /24, so I need to create the rule for each IP
?
Put "192.168.10.0/24" where exactly?
Sorry for the explication !!
In the maxconn ACL? Wont work, maxconn takes a single value.
In a separate unrelated src ACL? notice how src != maxconn. And its
test result is equally independent when tested. src looks for an
individual IP (the packet src IP) in a set.
Amos
# I have this:
acl client src 10.10.10.0/24
acl client src 10.71.0.0/24
acl client src 10.1.0.0/24
acl max_conn maxconn 10
http_access deny client max_conn
# The idea of above configuration is allow a maximum of 10 http
connection from each IP from clients networks to access the proxy.
I need to know if this work or this configuration allow just 10 http
connection between all !!!
Okay. It is maxconn for each individual IP.
Amos
