'm hardly a novice in squid (more of an initiate, actually) ... but it looks like you've got the deny rules backwards in examples 2 & 3. With they assumption that the first rule works fine, they should read: 2. http_access deny *ip2 inc3172* 3. http_access deny *ip3 inc3173* client still shows outgoing address from first acl statement... if i comment out the first acl the 2nd acl works and the outgoing address is what is expected. stumped! -jason On Sun, Jul 12, 2015 at 11:29 AM, Dan Purgert <dan@xxxxxxxx> wrote: > On Sun, 12 Jul 2015 11:13:02 -0700, Jason Enzer wrote: > >> [...] >> Looks like this: >> >> [snip] >> http_access allow tasty3171 ip1 >> http_access deny ip1 tasty3171 >> >> [snip] >> http_access allow inc3172 ip2 >> http_access deny *inc3172 ip2* >> >> [snip] >> http_access allow inc3173 ip3 >> http_access deny *inc3173 ip3* > > I'm hardly a novice in squid (more of an initiate, actually) ... but it > looks like you've got the deny rules backwards in examples 2 & 3. With > they assumption that the first rule works fine, they should read: > > 2. http_access deny *ip2 inc3172* > > 3. http_access deny *ip3 inc3173* > > _______________________________________________ > squid-users mailing list > squid-users@xxxxxxxxxxxxxxxxxxxxx > http://lists.squid-cache.org/listinfo/squid-users _______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
