Re: [squid-users] Help with ACL?

From: Adam Lang <aalang@dont-contact.us>
Date: Tue, 10 Apr 2001 15:32:08 -0400

The way ACLs work is that as soon as they hit a rule that satisfies a
condition, it stops reading the list.

Since you allow all, nothing gets past it to be denied.

Do the deny first and then the allow.

Adam Lang
Systems Engineer
Rutgers Casualty Insurance Company
http://www.rutgersinsurance.com
----- Original Message -----
From: "Jeff Bethke" <jbethk1@gl.umbc.edu>
To: <squid-users@squid-cache.org>
Sent: Tuesday, April 10, 2001 3:19 PM
Subject: [squid-users] Help with ACL?

> Can someone please help me?
> I want squid to block on person but let everyone else through!
> Right now I have these two acls that I think have something to do with
> it...
> acl all src 0.0.0.0/0.0.0.0 #Im guessing that this acl declares call
> can go through.
> acl test src 156.119.80.193/255.255.254.0 #this is the IP that I don't
> want to use the
> proxy-cache
>
> I then do:
> http_access allow all
> http_access deny test
>
>
> Now, by my small brain, the problem is that all, including the 156
> address, are let through. How do I set it such that all but this one
person(the 156 address/segment/etc) gets
> out? What minute detail am i missing?
> -Jeff
Received on Tue Apr 10 2001 - 13:29:26 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:59:15 MST