Re: [squid-users] Squid-2.4-STABLE7 http_access breaks when Netfilter REDIRECT turned on/off/on

From: per jarevez <perj8@dont-contact.us>
Date: Tue, 17 Jun 2003 23:21:16 +0000

Hi, I upgraded to squid-2.5-STABLE3 and the problem went away. Must be some
unknown bug in squid-2.4-STABLE7.src.rpm from RedHat. Maybe incompatible
with the kernel-2.4.21-rc6. Thanks anyway.

Squid Cache: Version 2.5.STABLE3
configure options: --prefix=/usr/local/squid --enable-gnuregex
--enable-delay-p
ools --enable-useragent-log --enable-referer-log --enable-kill-parent-hack
--ena
ble-removal-policies --enable-ssl --enable-linux-netfilter
--enable-underscores

>On Monday 16 June 2003 23.59, per jarevez wrote:
>
> > #
> > # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
> > #
> > http_access allow myAllow all <---- becomes "http_access allow
> > all" after Netfilter REDIRECT is switched back on.
> > http_access deny myDeny all
> > http_access allow localhost
> > http_access allow intranet
> > # And finally deny all other access to this proxy
> > http_access deny all
>
>
>Are you really sure the above is what you want?
>
>http_access allow myAllow all
>
>gives everyone in the whole world access to any sites matching
>"myAllow".
>
>
>I think what you want is
>
> http_access allow localhost
> http_access allow myAllow intranet
> http_access deny myDeny
> http_acces allow intranet
>
>
>Regarding the Netfilter issue, what do you get in access.log?
>
>Regards
>Henrik
>

_________________________________________________________________
Add photos to your e-mail with MSN 8. Get 2 months FREE*.
http://join.msn.com/?page=features/featuredemail
Received on Tue Jun 17 2003 - 17:21:22 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:17:25 MST