Re: help with regard to http/https filtering

Pavel Kazlenka <pavel.kazlenka@xxxxxxxxxxxxxxxxxxxxxxx> · Fri, 06 Feb 2015 08:39:01 +0300



    Hi Rajkumar,

      
      You probably need something like

      acl NoUpload method POST

      acl NoUpload method UPLOAD

      ....

      ssl_bump deny NoUpload

      
      Best wishes,

      Pavel

      
      On 02/06/2015 05:20 AM, Rajkumar Prasad wrote:

    
        Hi Pavel,
         
        Thanks for your help. I
          did this additional configs and now http http filterings
          working well for HTTPS enabled sites as well. I have another
          requirement wherin i need to filter http POST methods, which i
          am able to do for http sites. Is there a way we can achieve
          the same for https enabled sites? We need to ensure that there
          is no way people can send or upload any confidential contents
          for security reasons.
         
        Thanks much for your
          help !
         
        
            Thanks &
              Regards,
            _______________________________________________________________
            Rajkumar Prasad
            Network
              Administrator
             
            rprasad@xxxxxxxxxxxxxxxx
            _______________________________________________________________
          
        
        ------ Original
          message------
        From: Pavel
          Kazlenka
        Date: Wed, Feb
          4, 2015 14:10
        To: Rajkumar
          Prasad;squid-users@xxxxxxxxxxxxxxxxxxxxx;
        Subject:Re:
           help with regard to http/https filtering
         
      
        Hi Rajkumar,

          
          You need SSLBump feature (http://wiki.squid-cache.org/Features/SslBump)
          configured in order to use url_regex acl against https
          traffic.

          
          Best wishes,

          Pavel

          
          On 02/04/2015 09:38 AM, Rajkumar Prasad wrote:

        
            Hi
                Everyone,
             
            Have been
                working on very basic squid configurations and need a
                small help. We have done this setup for everyone to
                provide very limited access on restricted no of
                websites. My question here is that, is there a way we
                can control entire certain part of URL to be getting
                dropped instead of whole website and other contents. For
                e.g.
             
            We need to
                have access to 
                  http://renderman.pixar.com however we want to
                control an internal link within it “https://renderman.pixar.com/forum/download.php
                &
                
                  https://renderman.pixar.com/forum/teamviewer.php”
                . I see these are HTTPS enabled portal and maybe I am
                unable to. My intention is to block these specific
                URL’s, keeping rest other navigation working. I tried
                url_regex and urlpath_regex and those are not seems to
                be working.
             
            See if you
                can add a little help.
             
            Thanks 

                Rajkumar
             
          
          _______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users

        
_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users