Ángel Carrasco wrote:
> I am new squid user. I have three problems:
> 1) My users can see three machines without Authentication
> 2) My users can see all of rest of IP with authentication.
>
> and I add:
>
> acl machine1 dst 192.168.2.1/255.255.255.255
> acl machine2 dst 192.168.2.2/255.255.255.255
> acl machine3 dst 192.168.2.3/255.255.255.255
> acl password proxy_auth REQUIRED
> acl network src 192.168.2.0/255.255.255.0
>
> and ...
> http_access allow machine1
> http_access allow machine2
> http_access allow machine3
> http_access allow network password
> http_access deny network
> http_access deny all
>
> Is it correct?
Yes, but for simplicity you might skip the next last line if you like..
> and the second. is it possible use transparent proxy with proxy =
> authenticate?=20
No. HTTP does not allow proxy authentication unless a proxy is intentionally
being used. For proxy authentication to work the browser must know which
proxy it is talking to, which it does not when your proxy forcibly intercepts
any requests and spoofs itself as if it was the web server being contacted.
Regards
Henrik
Received on Tue Sep 10 2002 - 08:48:15 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:10 MST