On Fri, 28-Apr-2000 at 23:14:27 +0200, Henrik Nordstrom wrote:
> Duane Wessels wrote:
>
> > your access control is probably more complex than it needs
> > to be. You can probably use
> >
> > acl spandex dst 63.163.227.105 63.163.227.89
> > acl HTML url_regex -i \.html$ \.htm$
> > no_cache deny spandex HTML
> >
> > Usually the only reason to use dstdomain is if you have
> > a LOT of IP addresses that you don't want to type in.
>
>
> No. no_cache is a "fast" ACL check (unless one of my patches are
Hmm, could you please explain briefly what a "fast" ACL check is?
> applied), which makes dst a rather unreliable ACL to use.. and since one
Is dst always unrealiable? Sorry for asking but I always thought
that a dst based acl either matches or not...
Thanks,
-Andre
Received on Sat Apr 29 2000 - 03:23:40 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:53:07 MST