> Running squid..
> Currently if a someone tries to use the proxy they are prompted for a user
> and pass which authenticates to let them surf through.
>
> I want to also let a select few subnets pass through without having to
> authenticate.
> This is the config I have now.. Have I done something wrong..
Yes, since http_access is determined on a 'first match' base
you need to move :
http_access allow USAI.NET
behind (after) :
http_access allow mva
to let these networks let go
first (without authentication)
M.
>
> acl USAI.NET proxy_auth REQUIRED
> http_access allow USAI.NET
> acl all src 0.0.0.0/0.0.0.0
> acl mva src 65.118.154.0/24
> acl mva src 67.110.140.0/23
> acl mva src 216.236.240.0/20
> acl mva src 12.101.196.248/29
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> http_access allow mva
> http_access allow manager localhost
> http_access deny manager
> http_access allow localhost
> http_access deny all
> auth_param basic realm USAI-REALM
>
> Thanx
> Cris
>
>
M.
Received on Wed Mar 08 2006 - 14:51:07 MST
This archive was generated by hypermail pre-2.1.9 : Sat Apr 01 2006 - 12:00:03 MST