AW: AW: [squid-users] ACL´s

Hi Henrik,

the following rules are working and when I make the rules easier it doesn´t work - is it bug in this release? I´ve installed a test-2.5 stable1 and the easy rules worked!!

Regards
Alex

http_port 3128
icp_port 0
cache_dir ufs /var/cache/squid 1500 128 256
ftp_list_width 32
ftp_passive on
request_body_max_size 10 MB
reference_age 4 weeks

acl http proto HTTP
acl ftp proto FTP
acl ftp_perms src "/root/ftp_perms"
acl http_perms src "/root/http_perms"
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255

acl SSL_ports port 443 563
acl Safe_ports port 80
acl ftp_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1024-65535
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http

acl CONNECT method CONNECT

http_access allow manager localhost
http_access deny manager
http_access allow http localhost
http_access allow http http_perms
http_access allow ftp ftp_perms
http_access allow ftp localhost
http_access allow SSL_ports http_perms
http_access allow SSL_ports localhost
http_access allow Safe_ports http_perms
http_access allow Safe_ports localhost
http_access allow ftp_ports ftp_perms
http_access allow ftp_ports localhost

acl worm urlpath_regex -i .eml$
http_access deny worm

http_access deny all

-----Ursprüngliche Nachricht-----
Von: Henrik Nordstrom [mailto:hno@squid-cache.org]
Gesendet: Freitag, 28. November 2003 13:59
An: Messner, Alexander
Cc: Henrik Nordstrom; squid-users@squid-cache.org
Betreff: Re: AW: [squid-users] ACL´s

On Fri, 28 Nov 2003, Messner, Alexander wrote:

> Hi Henrik,
>
> there´s no output when I run "squid -k parse" and
> in the http_perms are the allowed IP adresses of my users.....

Then I don't see any reason why it should not work.

Make sure there is no other http_access rules before this which denies
access.

Regards
Henrik

**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

This footnote also confirms that this email message has been swept by
Graffinity Pharmaceuticals AG for the presence of computer viruses.

www.graffinity.com
**********************************************************************
Received on Fri Nov 28 2003 - 06:39:19 MST