Hello,
I use squid 2.5 stable 10 and dansguardian.
The configuration is:
Squid ==> dansguardian ==> gateway (which is just another proxy server with http antivirus).
I use acl's in my squid configuration and they are forwarded to dansguardian (cache_peer).
For my acl's i use mac address and the configuration is so that i have to use a parent server and "never_direct" so that all my users go straight via dansguardian.
I can also choose for some users that are béfore the never_direct rule, to go direct without going to dansguardian and without going to the gateway.
(squid can go directly out if it wants, also configured on firewall).
Now, some users (read ACL's) need to go straight without going via dansguardian because i don't want them to (management).
I could use exceptioniplist (in dansguardian) but i use dhcp on the network and in my squid i use mac address so i thougt that maybe i could squid forward just some ACL's to another cache_peer, in this case the gateway.
I thought i could do it with cache peer access but it is not working or i am doing something wrong.
- I added a new cache peer
- added cache_peer x.x.x.x allow test
- added cache_peer x.x.x.x deny all
But my http_access is stil valid for "test" so in fact he is not looking to cache_peer_access in this case and if i remove http_access, i can't surf of course.
Or am i seeing it totally wrong ?
How can i do this ?
Thnx & grtz!
Phil
Received on Fri Nov 25 2005 - 08:12:27 MST
This archive was generated by hypermail pre-2.1.9 : Thu Dec 01 2005 - 12:00:10 MST