And by the way, 192.168.0.0/255.255.0.0 is correct? are you using class B on
192.168? instead of using class C?
----- Original Message -----
From: "Jose Nathaniel Nengasca" <admin@sscrmnl.edu.ph>
To: "Squid Mailing List" <squid-users@squid-cache.org>
Sent: Monday, May 24, 2004 11:12 AM
Subject: Re: [squid-users] TCP_DENIED/403 1402 GET
> It seems that your netmask ACL on ALL is a bit messy, try not to use
> 255.255.255.255, use 0.0.0.0 instead...
>
>
> > Hello,
> >
> > I searched the archives, edited my ACLs, but I can't figure this one
> > out. A Version 2.5.STABLE5 that seemed to be working fine is now
> > rejecting users with an access denied message. My access log has
> > entries like the following:
> >
> >
> > 1085339278.198 2 192.168.253.14 TCP_DENIED/403 1352 GET
> > http://slashdot.org/ - NONE/- text/html
> > 1085340459.256 2 192.168.253.14 TCP_DENIED/403 1356 GET
> > http://macintouch.com/ - NONE/- text/html
> >
> >
> > My squid box is sitting in a DMZ behind the firewall, so I'd like to
> > just run pretty lax security on it. The conf file, which I'm trying to
> > keep simple, has the following ACLs:
> >
> > acl all src 0.0.0.0/255.255.255.255
> > http_access allow src 192.168.0.0/255.255.0.0
> > http_access allow all # Added out of frustration
> > http_access deny all
> >
> > Thoughts?
> > --jorn
>
Received on Sun May 23 2004 - 20:59:13 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Jun 01 2004 - 12:00:02 MDT