Hi,
I wanna implement a better restriction to internet. Some of my local hosts
should be blocked, some hosts restricted to specific domains and all other
hosts can do what they want.
My problem is, how can I say that the group 'resctricthosts' can only
access to domains declared in 'restrict'? Below is something I tried, but
I think it will not work because restricthosts are a part of allowhosts?
Should the domains listed in file "domains.blocked" start with a period to
avoid problems with domains like "love.de", "pizzalove.de" and I only
wanna block the first domain.
Thx for any help/advice! :)
acl allowhosts src 1.1.0.0/255.255.0.0
acl denyhosts src "/etc/squid/hosts.deny"
acl resctricthosts src "/etc/squid/hosts.restrict"
acl restrict dstdomain "/etc/squid/domains.allowed"
acl blockedstuff dstdomain "/etc/squid/domains.blocked"
acl all src 0.0.0.0/0.0.0.0
http_access deny denyhosts
http_access deny blockedstuff
http_access allow restricthosts restrict #<- will this work?
http_access allow allowhosts
http_access deny all
File hosts.deny will contain something like "1.1.1.0/24".
File hosts.resctrict will contain something like "1.1.2.0/24".
-- Mark Seuffert, Pirates Communication, http://www.pirate.deReceived on Thu Jul 29 1999 - 01:15:07 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:47:36 MST