Thanks! much appreciated On Thu, Oct 10, 2013 at 6:37 AM, Amos Jeffries <squid3@xxxxxxxxxxxxx> wrote: > On 10/10/2013 12:40 p.m., Leonardo Rodrigues wrote: >> >> >> No need for two instances ... >> >> just get squid listening on how many ports you need it to: >> >> http_port port1 >> http_port port2 >> ... >> http_port portN >> >> create ACLs for each port >> >> acl port1 myport port1 >> acl port1 myport port2 >> ... >> acl portN myport portN > > > Small alteration: Use myportname instead of myport. > > NP: The 'name' of a http_port in Squid defaults to the exact text string > used as the first parameter (host:port details) and can be set to something > else using the name=X option. > > This is important because "myport" ACL matches TCP connection details after > NAT/TPROXY discovery which are not always the same as the http_port listener > details. > > > >> and get all your http_access rules with the appropriate port ACLs as >> well, thus giving completly different policies depending on the proxy port >> used. >> >> >> http_access allow port1 other_rule >> http_access deny port1 other_rule >> etc etc >> >> > > Amos
