Re: [squid-users] Need help with squid.conf

# Virus List
acl virus urlpath_regex system32
acl virus1 urlpath_regex root.exe
acl virus2 urlpath_regex default.ida
#
http_access deny virus
http_access deny virus1
http_access deny virus2
# Virus List ENDS
#
# Access List
#
# Your Group
acl Your_Network src x.x.x.x
#
http_access allow YOUR_Network
icp_access deny Your_Network
miss_access allow Your_Network
# YOUR Group ENDS

# World Group
acl all src 0.0.0.0/0.0.0.0
acl voda dstdomain .vodafone.com.au
http_access allow voda
http_access deny all
icp_access deny all
miss_access allow all
#
# END of Access List

Should block everyone except your network

Thank you very much.

Best regards,

Edward Millington. BSc, Network+
Systems Administrator, Sr
Cariaccess Communications Ltd.
Palm Plaza
Wildey
St. Michael
Barbados
1-246-430-7435
Fax : 1-246-431-0170
edward@cariaccess.com
www.cariaccess.com

----- Original Message -----
From: "Darren Wright" <dwright@mobiletronics.com.au>
To: <squid-users@squid-cache.org>
Sent: Thursday, March 21, 2002 9:32 PM
Subject: [squid-users] Need help with squid.conf

> Dear Squid Users
>
> I am try to remove full internet access from my remote users only but
allow
> the LAN users to browse everywhere.
> I have setup the access control lists using src and dstdomain.
> If I allow the dstdomain for a particular site it works, they can only
> browse to this site. But when I use src and select IP's and ranges of IP's
> and then allow the selected user it does not work.
>
> example.
> acl darren src 192.168.20.141/255.255.255.0
> acl voda dstdomain .vodafone.com.au
> http_access allow voda
> http_access allow darren
> http access deny all
>
> The above example allows all users access to the vodafone web site. User
> darren can still only browse to the vodafone web site. I want the user
> darren to have full internet access.
>
> Can anyone help please.
>
> Thanks
> Darren Wright
> IT Manager
> Armeadon Pty Ltd
> Trading as Mobiletronics/Telecell
>
> Ph: (03) 9682 3233
> Fax: (03) 9690 0466
>
> ********************************************
> This message and any attachments are confidential and may be subject to
> legal or other professional privilege. Any confidentiality or privilege is
> not waived or lost because this e-mail has been sent to you by mistake. If
> you have received this transmission in error, please notify us by reply
> e-mail, or phone +613 9682 3233 and delete our e-mail.
>
> All e-mail that is sent from/to the Armeadon Pty Ltd is scanned for the
> presence of computer viruses, security issues and inappropriate content.
> However, it is the recipient's responsibility to check any attachments for
> viruses before use.
> *******************************************
>
>
>
Received on Thu Mar 21 2002 - 18:47:15 MST