Manu Garg wrote:
> Say, I have a domain example.com and users access intranet web server
> in this domain as: http://www/index.html. www's fqdn is
> www.example.com and squid is able to resolve 'www' based on search
> path specified in /etc/resolv.conf.
>
> My problem is, in above scenario, squid matches only 'www' when it
> comes to dstdomain acl. So, I cannot catch all local traffic using
> following acl:
>
> acl localservers dstdomain .example.com
>
> Is there anyway to make squid use FQDNs in dstdomain acls? or, any
> other way to resolve this problem?
>
> thanks,
> Manu
ACL dstdomain does not actually do any matching of the domain name. It
does a DNS lookup to find the A record of the FQDN given and checks IPs
against the result.
ACL domain is the one you want for matching domains as text strings. It
does handle the .foo.bar case you want.
Amos
Received on Sat Apr 07 2007 - 07:36:09 MDT
This archive was generated by hypermail pre-2.1.9 : Tue May 01 2007 - 12:00:01 MDT