Re: [squid-users] Blocking an IP

Ok. Looks to me that everything should be working nice...

There should be the creation of the acl:
acl bad_ips dst "/etc/squid/bad_ips.acl"

And after that should exist the denial...
http_access deny bad_ips

Why does Squi return this:
aclParseAclLine: IGNORING invalid ACL: acl bad_ips dst
"/etc/squid/bad_ips.acl"
squid.conf line 66: http_access deny bad_ips
aclParseAccessLine: ACL name 'bad_ips' not found.
squid.conf line 66: http_access deny bad_ips
aclParseAccessLine: Access Line contains no ACL's, skipping

----- Original Message -----
From: "Mark Elsen" <mark.elsen@gmail.com>
To: "Palula Brasil" <palula@uol.com.br>
Cc: <squid-users@squid-cache.org>
Sent: Wednesday, December 21, 2005 3:07 AM
Subject: Re: [squid-users] Blocking an IP

> Hi there everyone! :-)
>
> I'd like to know how could I create an acl of IP's that shouldn't be
> accessed. Like for example, I'd create a txt file with bad IP's and don't
> want my clients to acces those IP adresses...
>
> In my actual config I putted an IP address within the bad_domains file and
> it didn't work, which uses dstdomain to block the domain. But if I wanted
to
> block IP addresses how should I do it?

  Use the "dst" acl type.

 (see beginning of : http://www.squid-cache.org/Doc/FAQ/FAQ-10.html)

>
> Logically it would be something like this... Please don't joke :-)
>
> On the acl config section, something like this...
> acl bad_ips dst "path_to_file/file" (This would have all the IP's I want
to
> block)
>
> On the actual permission section, something like this...
> http_access deny bad_ips
>
> Seems pretty logical to me but I don't know if the syntax would be
right...

  http://www.squid-cache.org/Doc/FAQ/FAQ.html#toc10.26

  M.

>
> Thanks in advance!
>
>
Received on Tue Dec 20 2005 - 22:34:55 MST