Re: acl-proxy_auth

From: Arjan de Vet <Arjan.deVet@dont-contact.us>
Date: Thu, 18 Jun 1998 22:10:43 +0200 (CEST)

>again a question: on the homepage of the proxy_auth patch it says, that
>one may only use one proxy_auth entry which must be the last entry of
>acls. We have 4 different networks, 10.20.something.x/class c for
>internet cafes, 172.16.x.x/class b for inhouse, 172.21.something.x/class
>c for home-pcs, and 10.something.something.x/class c for outlets. So i
>need to have all networks except the internet cafes use proxy_auth...
>how should i accomplish that?

Try something like this:

    acl cafes src 10.20.x.x/24
    acl inhouse src 172.16.0.0/16
    acl homepcs src 172.21.x.x/24
    acl outlets src 10.x.x.x/16
    acl password proxy_auth "/etc/passwd"

    http_access allow cafes
    http_access allow inhouse password
    http_access allow homepcs password
    http_access allow outlets password
    http_access deny all

or even simpler:

    acl cafes src 10.20.x.x/24
    acl password proxy_auth "/etc/passwd"

    http_access allow cafes
    http_access allow password
    http_access deny all

Arjan
Received on Thu Jun 18 1998 - 14:15:29 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:40:44 MST