[squid-users] FTP problem trougth Squid from Balzi Andrea on 2005-10-14 (squid-users)

From: Balzi Andrea <andrea.balzi@dont-contact.us>
Date: Fri, 14 Oct 2005 12:13:50 +0200

Hi

I'm using a squid-2.5.10 and I've a problem with my users when try to
connect on a FTP server that request a specific login and password.
In to my squid.conf I've set the follow lines:

ftp_user network@arthis.it
ftp_passive on
ie_refresh on

In to my acl the ftp site aren't block.
My PC is defined on the acl admin works fine.
I've try change ftp_passive to off but don't resolve the problem.
My ACL are:

acl all src 0.0.0.0/0.0.0.0
acl arthis src XXX.XXX.XXX.XXX/255.0.0.0
acl private-network dst 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16
acl admin src PC1 PC2 PC3
acl localhost src 127.0.0.1/255.255.255.255
acl dominigruppo dstdomain "/etc/squid/blacklists/dominigruppo"
acl urlbloccate url_regex -i "/etc/squid/blacklists/urlbloccate"
acl urlbloccate2 url_regex -i "/etc/squid/blacklists/urlbloccate2"
acl domregexbloccati dstdom_regex -i
"/etc/squid/blacklists/domregexbloccati"
acl dstbloccati dst "/etc/squid/blacklists/dstbloccati"
acl dominibloccati dstdomain "/etc/squid/blacklists/dominibloccati"
acl dominiautorizzati dstdomain
"/etc/squid/blacklists/dominiautorizzati"
acl urlnocache url_regex -i "/etc/squid/blacklists/urlnocache"
acl blacklists dstdom_regex -i "/etc/squid/blacklists/blacklists"
acl passport-user src "/etc/squid/blacklists/passport-user"
acl QUERY urlpath_regex -i cgi-bin .cgi
acl METHOD method CONNECT POST
acl ssl proto HTTPS
http_access allow admin
http_access allow dominigruppo
http_access allow urlbloccate2
http_access deny dominibloccati !passport-user
http_access allow dominiautorizzati
http_access deny messanger !passport-user
http_access deny blacklists
http_access deny urlbloccate !passport-user
http_access deny dstbloccati
http_access deny domregexbloccati !passport-user
http_access allow arthis
http_access allow localhost
http_access deny all
no_cache deny QUERY
no_cache deny urlnocache
no_cache deny METHOD
no_cache deny ssl

Are a wrong configuration of mine acl?
I don't understand where I'm mistaking. :(((

Andrea
Received on Fri Oct 14 2005 - 04:18:01 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Nov 01 2005 - 12:00:04 MST