[squid-users] changing the access denied message for differanet clients (using acls) from Edmund Haworth on 2001-03-23 (squid-users)

From: Edmund Haworth <ehaworth@dont-contact.us>
Date: Fri, 23 Mar 2001 08:51:42 -0000

I have two users bases on differant subnets and i want to use differant
denied messages when they hit a bad page, my client acls are-

----------- CUT --------------
#define staff
acl staff src 172.16.1.0/255.255.255.0
acl staff src 172.16.2.0/255.255.255.0
acl staff src 172.16.5.0/255.255.255.0
acl staff src 172.16.7.0/255.255.255.0
acl staff src 172.16.9.0/255.255.255.0
acl staffdom srcdomain .staff.wortech.ac.uk

#define students
acl student src 172.16.3.0/255.255.255.0
acl student src 172.16.4.0/255.255.255.0
acl student src 172.16.6.0/255.255.255.0
acl student src 172.16.8.0/255.255.255.0
acl studentdom .student.wortech.ac.uk

#domains to ban using the block/* files
acl badLang dstdomain "/usr/local/squid/etc/block/badlang.block"
acl badPorn dstdomain "/usr/local/squid/etc/block/porn.block"
acl badPirate dstdomain "/usr/local/squid/etc/block/pirate.block"
acl badMP3 dstdomain "/usr/local/squid/etc/block/mp3.block"
acl badGames dstdomain "/usr/local/squid/etc/block/games.block"
acl badEntertain dstdomain "/usr/local/squid/etc/block/entertain.block"
#domains to allow using the block/* files
acl goodLang dstdomain "/usr/local/squid/etc/block/badlang.unblock"
acl goodPorn dstdomain "/usr/local/squid/etc/block/porn.unblock"
acl goodPirate dstdomain "/usr/local/squid/etc/block/pirate.unblock"
acl goodGames dstdomain "/usr/local/squid/etc/block/games.unblock"
acl goodEntertain dstdomain "/usr/local/squid/etc/block/entertain.unblock"

#Default configuration:
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports

#Deny norty stuff
http_access deny badDomains all
http_access deny badLang all
http_access deny badPorn all
http_access deny badPirate all
http_access deny badMP3 all
http_access deny badGames all
http_access deny badEntertain all

#allow ghud stuff
http_access allow goodLang all
http_access allow goodPorn all
http_access allow goodPirate all
http_access allow goodGames all
http_access allow goodEntertain all

#allow staff out
http_access allow staff
http_access allow staffdom
#allow students out
http_access allow student
http_access allow studentdom

deny_info ERR_ACCESS_DENIED_STUDENT studentdom
deny_info ERR_ACCESS_DENIED_STUDENT student
deny_info ERR_ACCESS_DENIED staff
deny_info ERR_ACCESS_DENIED staffdom
----------- CUT --------------

is there reason why the ERR_ACCESS_DENIED page is displayed on student
clients as well as staff?
have i overlooked something?

Thanks,
Edmund Haworth
Assistant Network Engineer
Worcester College of Technology
Deansway
Worcs WR1 2JF

Tel: +44 1905 725516
Fax: +44 1905 28906
E-mail: ehaworth@wortech.ac.uk
Received on Fri Mar 23 2001 - 01:51:52 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:58:48 MST