(no subject)

From: Bond, Darryl <dbond@dont-contact.us>
Date: Tue, 14 Apr 1998 15:31:06 +1000

Hi
I have squid 1.1.20 with proxy auth acl patch. This is to require
internal users to supply a password before leaving the internal
networks. I do not want them to require a password for internal servers.

The squid proxy is inside the firewall so I am not trying to stop any
connections to the proxy.

I have the browsers pointing to the squid proxy with no bypass settings.
Most times when a user tries to access an internal server a password
prompt pops up. Most times this can be cancelled and access is granted
but sometimes it is not granted. I would like it to work without the
password prompt appearing at all when an internal server is accessed.
My acl list is
======================================
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl all src 0.0.0.0/0.0.0.0
acl ourlan dst 192.168.1.0/255.255.255.0 192.168.2.0/255.255.255.0

acl SSL_ports port 443 563
acl Dangerous_ports port 7 9 19
acl CONNECT method CONNECT
acl password proxy_auth /etc/squid/passwd

http_access deny CONNECT !SSL_ports
http_access deny Dangerous_ports

# Allow everything else

http_access allow ourlan
http_access allow !ourlan password

What am I doing wrong?

TIA
Darryl Bond
Received on Mon Apr 13 1998 - 22:35:23 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:39:40 MST