Re: [squid-users] unsure of one acl in squid.conf

From: pat lendon <plendon@dont-contact.us>
Date: Tue, 28 Aug 2001 14:08:17 -0400

Robert Collins wrote:

> On 27 Aug 2001 17:29:18 -0400, pat lendon wrote:
>
> > Also, the config is set to require passwords. Is it also possible to
> > block requests from any other server except local server - and then the
> > requests for the local server must require password? I'm not sure what
> > acl is needed for this.
>
> Sure, something like
> acl fromlocalserver src <ip> (identify requests from the local server)
> http_access deny !fromlocalserver (allow them)
> acl tolocalserver dst <ip> (identify requests to the local server)
> acl passwd proxy_auth REQUIRED (require a valid username + passwd)
> http_access allow tolocalserver passwd
>
> Rob

I do apologize, ACL's can be too confusing (and I think I'm still confused).

If I have a squid server and want to deny all the other squid servers access,

acl squid_server src xx.xx.xx.xx/255.255.255.255 (ip of the squid server)
http_access deny !squid_server

If I have 50 users on one net and want them to be able to access squid server

with passwd,
acl 50_users dst xx.xx.xx.xx/255.255.255.0 (ip range or net of 50 users)
acl paswd proxy_auth REQUIRED
http_access allow 50_users passwd
http_access deny all

Thank you.

-pat
Received on Tue Aug 28 2001 - 12:21:32 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:01:56 MST