Search squid archive

Re: Block IP based lookups

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 




despite the fact the most usual is browsing by hostnames of any kind, there's LOTS of pages that uses IP addresses on the links displayed and, thus, your rule would probably break LOTS of legitime browsing where the user is NOT really 'typing' an IP address.

for example, even HOTMAIL uses this !! This logline was grabbed from a TODAY log, it's not an old log, it's from TODAY:


1335178083.446 1058 192.168.0.162 TCP_MISS/200 127569 GET http://65.55.40.87/att/GetInline.aspx?messageid=8cefd7ba-8b2b-1fe1-b879-00237d65e98e&attindex=0&cp=-1&attdepth=0&imgsrc=cid%3aimage005.jpg%4001CD1A64.F6641BA0&shared=1&blob=MHxpbWFnZTAwNS5qcGd8aF1hZ2UvenBlZw_3d_3d&hm__login=XXXXXXXXXX&hm__domain=hotmail.com&ip=10.12.148.8&d=d405&mf=0&hm__ts=Mon%2c%2023%20Apr%202012%2010%3a47%3a40%20GMT&st=lleugerb&hm__ha=01_f1a95b6922365947ae92542149a187abbbb6c6f1b688c4afc76a77c422789965&oneredir=1 - DIRECT/65.55.40.87 image/jpeg



Em 23/04/12 09:36, Dean Weimer escreveu:
-----Original Message-----

Is it possible to block all IP based lookups from the browser with squid
acls?

If I assume you mean to match request to IP address,
http://192.168.1.1/, instead of to a hostname like
http://www.example.com, the following works quite well.

# Match By IP Requests
acl BYIP dstdom_regex ^[0-9\.:]*$


--


	Atenciosamente / Sincerily,
	Leonardo Rodrigues
	Solutti Tecnologia
	http://www.solutti.com.br

	Minha armadilha de SPAM, NÃO mandem email
	gertrudes@xxxxxxxxxxxxxx
	My SPAMTRAP, do not email it







[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux