Dmitry Melekhov wrote:
> Hello!
>
> I need to allow users access some sites without authorization.
>
> If I write acl:
>
>
> acl 1sk dstdomain 1sk.ru
> http_access allow our_nets 1sk
>
> it doesn't work
> but if
>
>
> acl 1sk dst 194.186.36.214
> http_access allow our_nets 1sk
>
> it works.
>
> our_nets is
> acl our_nets src 192.168.21.0/24 192.168.22.0/24 ....
>
>
>
> It is not very good to have acls based on dst ip address, because it
> can be changed ;-)
> Is it possible to use acl dstdomain in my situation?
Hello,
You can try with the following configuration in squid.conf
acl auth_users proxy_auth REQUIRED
acl page dstdomain 1sk.ru
acl our_nets src 192.168.21.0/24 192.168.22.0/24 ....
http_access allow page
http_access allow auth_users our_nets
Thanks,
Visolve Squid Team
www.visolve.com/squid/
Received on Fri Sep 22 2006 - 03:33:23 MDT
This archive was generated by hypermail pre-2.1.9 : Sun Oct 01 2006 - 12:00:04 MDT