Hi all,
I have setup acl to block some lists with domain names and one with words.
The one with words works but the one with dstdomain does not work!
Here is my acl config:
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 445 443 441 563
acl Safe_ports port 80 # http
acl Safe_ports port 81 # smoothwall http
acl Safe_ports port 21 # ftp
acl Safe_ports port 445 443 441 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl banned_sites dstdomain "/usr/local/squid/ext/domainlist2.txt"
acl ban1 dstdom_regex "/usr/local/squid/etc/porn.txt"
acl ban2 url_regex "/usr/local/squid/etc/porn.txt"
acl fulltime src 100.100.100.137 100.100.100.30 100.100.100.135 100.100.100.31 100.100.100.111 100.100.100.56 100.100.100.42 100.100.100.190 100.100.100.46 100.100.100.45 100.100.100.225
acl medewerkers src 100.100.100.100/24
acl fulltime time MTWHFA 06:00-23:55
acl morning time MTWHFA 06:30-08:00
acl evening time MTWHFA 15:30-17:30
http_access deny banned_sites
http_access deny ban2
http_access deny ban1
http_access allow fulltime fulltime
http_access deny fulltime
http_access allow medewerkers morning
http_access allow medewerkers evening
http_access deny medewerkers
http_access allow localhost
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localnet
http_access deny all
Please help,
Jerry
Received on Mon Mar 29 2004 - 07:19:50 MST
This archive was generated by hypermail pre-2.1.9 : Thu Apr 01 2004 - 12:00:03 MST