Search squid archive

Re: Re: squid3 block all 443 ports request

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi Khalil,

You've supplied a logically invalid access rule, ie an impossible match. You're trying to block everything that is on port 445 and also at the same time everything that is *not* on 443.

I'd be surprised if you can get any access with that!

What you need is something like (if you want to block ssl)

http_access allow !SSL_ports
http_access deny  SSL_ports

Swap it around if you want to allow SSL only.

Read the docs, the way acls and access rules is clearly explained there.

Access lists are logically and'ed in the same entry., and or'ed (in order before a deny rule) over multiple entries.

acls are or'ed in the same entry, and across multiple entries.

Cheers

Alex


On 12/02/14 15:27, khadmin wrote:
Hi,
here is my squid.conf file.
here is my configuration concerning ssl ports:
acl SSL_ports port 443
http_access deny SSL_ports !SSL_ports

Regards,
Khalil squid.conf
<http://squid-web-proxy-cache.1019090.n4.nabble.com/file/n4664752/squid.conf>



--
View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/squid3-block-all-443-ports-request-tp4664735p4664752.html
Sent from the Squid - Users mailing list archive at Nabble.com.





[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux