> acl ournet src 10.1.1.0/255.255.255.0
> acl ourservers url_regex 10.1.1.
> acl super_ip src 10.1.1.240 10.1.1.241 10.1.1.242
> delay_class 1 2
> delay_parameters 1 750000/45000000 -1/-1
> delay_access 1 allow ourservers
> delay_access 1 allow super_ip
> delay_access 1 deny all
I am surprised that the above delay_pool doesn't cancel out the other ones
since it looks like the "ourservers" acl would match everyone in your
office, not just the super_ip people. I think the delay_pools' acls are
"first match wins" so the above rule would mean none of the other rules are
read since this one matched (but I might be wrong about that :).
So what about trying it without the "ourservers" line in your first
delay_pool?
Also I configured my similar delay_pools slightly differently. I bound the
network (localnet) to the delay_pool acl in the *http_access* lines like
this:
http_access allow localnet office_time2
http_access deny all
And then put just the delay_pool acl on the delay_access line like this:
delay_access 2 allow office_time2
delay_access 2 deny all
Of course both ways may work fine but if removing the "ourservers" line
above doesn't work, then try adding that into your http_access lines (if it
isn't already there).
hope this helps,
Adam
Received on Fri May 16 2003 - 11:22:28 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:16:42 MST