ive got it configured like this
logformat squid %tl %ru %Ss %ru %un %ul %ue %ea
external_acl_type ip_user_helper %SRC %LOGIN
/usr/libexec/squid/ip_user_check -f /etc/squid/ip_user.conf
andrew@hepworth ~ $ cat /etc/squid/ip_user.conf
127.0.0.1 ALL
hepworth squid # cat /etc/squid/squid.conf |grep ^acl
acl all src 0.0.0.0/0.0.0.0
acl ip_user external ip_user_helper
acl QUERY urlpath_regex cgi-bin \?
acl apache rep_header Server ^Apache
hepworth squid # cat /etc/squid/squid.conf |grep ^http
http_access allow ip_user
http_access deny all
http_port 3128
hepworth squid #
and the output is this
andrew@hepworth ~ $ tail -n1 /var/log/squid/access.log
20/Mar/2008:14:07:57 +0000 http://www.google.com/ TCP_DENIED
http://www.google.com/ - - - -
andrew@hepworth ~ $
2008/03/20 14:07:57| aclCheckFast: list: 0x82a7748
2008/03/20 14:07:57| aclMatchAclList: checking all
2008/03/20 14:07:57| aclMatchAcl: checking 'acl all src 0.0.0.0/0.0.0.0'
2008/03/20 14:07:57| aclMatchIp: '127.0.0.1' found
2008/03/20 14:07:57| aclMatchAclList: returning 1
2008/03/20 14:07:57| aclCheck: checking 'http_access allow ip_user'
2008/03/20 14:07:57| aclMatchAclList: checking ip_user
2008/03/20 14:07:57| aclMatchAcl: checking 'acl ip_user external
ip_user_helper'
2008/03/20 14:07:57| aclMatchAcl: returning 0 sending authentication
challenge.
2008/03/20 14:07:57| aclMatchAclList: no match, returning 0
2008/03/20 14:07:57| aclCheck: requiring Proxy Auth header.
2008/03/20 14:07:57| aclCheck: match found, returning 2
2008/03/20 14:07:57| aclCheckCallback: answer=2
2008/03/20 14:07:57| The request GET http://www.google.com/ is DENIED,
because it matched 'ip_user'
2008/03/20 14:07:57| The reply for GET http://www.google.com/ is ALLOWED,
because it matched 'ip_user'
the pages arent being server.
according to the logfile %un %ul %ue %ea arent set
Received on Thu Mar 20 2008 - 08:15:38 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Apr 01 2008 - 13:00:05 MDT