Thanks, "http_access allow client1 password" works. Sean On 5 September 2012 19:46, Yanier Salazar Sanchez <yanier.salazar@xxxxxxxxxxxxxx> wrote: > > > > > -----Original Message----- > From: boran@xxxxxxxx [mailto:boran@xxxxxxxx] On Behalf Of Sean Boran > Sent: Wednesday, September 05, 2012 9:41 AM > To: squid-users@xxxxxxxxxxxxxxx > Subject: How to write an acl that forces authentication only > from specific networks? > > On my internal network, no user authenication is currently used, so the acl > is like acl our_networks src "/etc/squid/our_networks.list" > http_access allow our_networks > http_access allow localhost > http_access deny all > > Now I'd like to force authentication only from one IP 10.90.195.47s and > tried: > auth_param basic program /usr/local/squid/libexec/basic_ncsa_auth > /etc/squid/passwd > > acl password proxy_auth REQUIRED > acl client1 src 10.90.195.47/32 > > add addin the following before "http_access allow our_networks": > http_access allow password src client1 > change you http_access for this http_access allow client1 password > > but that https_acces line is wrong it kill squid :-) > > Is there a way of doing this? > > Thanks in advance, > Sean
