Thanks Anri, That much makes things ALOT clearer. I've been working on
SCO systems for more year than I want to remember and Linux now a couple,
but this is my first trek into SQUID. Sometimes you just need a few
examples. See below, am I on the right track?
At 12:04 AM 10/24/99 +0300, Andriy Kopystyansky wrote:
>On Sat, 23 Oct 1999, Ken Wolff wrote:
> > - We have one group of IPs that should have access to any web site.
> > - We have another group that should have access to a list of sites.
> > - We have another group that has no access to any sites.
>
>in squid.conf define ACL for IP that should be fully allowed:
> acl Power src xxx.xxx.xxx.xxx/xxx.xxx.xxx.xxx
If I had 2 IPs that could get anywhere, then would I have 2 "Power" lines
as in...
acl Power src 172.20.1.1/0.0.0.0
acl Power src 172.20.1.2/0.0.0.0
>and ACL for IP, allowed partially:
> acl People src xxx.xxx.xxx.xxx/xxx.xxx.xxx.xxx
If I had 3 IPs that get to some places...
acl People src 172.20.1.3/56.0.78.11
acl People src 172.20.1.3/206.132.41.203
acl People src 172.20.1.4/56.0.78.11
acl People src 172.20.1.4/206.132.41.203
acl People src 172.20.1.5/56.0.78.11
acl People src 172.20.1.5/206.132.41.203
>and ACL for allowed destinations:
> acl Restr dstdomain yahoo.com disney.com
>then,
> http_access allow Clients
> http_access allow People Restr
> http_access deny all
>------
>note: in this example 'People' cannot be 'Clients'
>Cheers!
>Anri
--------------------------------------------------------------
Ken Wolff
Phone: 616-957-4949 Ext: 111
FAX: 616-957-1614
--------------------------------------------------------------
Received on Sat Oct 23 1999 - 15:48:41 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:49:02 MST