[squid-users] ACLs from Merdouille on 2009-04-02 (squid-users)

From: Merdouille <jgerhards_at_r-advertising.com>
Date: Thu, 2 Apr 2009 03:00:09 -0700 (PDT)

i use a transparent squid proxy and i want :
- access as manager with squidclient from localhost only
- allow only computer from localhost to go every where

My ACLs :
#============== ACL
# nom type
acl all src all
acl port port 82
acl localnet src 192.168.100.0/192.168.100.255
acl manager proto cache_object
acl PROTO proto http
acl METHOD method GET
acl localhost src 127.0.0.1

I try :

http_access allow localhost manager
http_access allow localnet port !manager
http_access deny all !port !PROTO !METHOD

but manager can acces from every IP of localnet
I try :

http_access allow localnet port !manager
http_access deny all !port !PROTO !METHOD
http_access allow localhost manager
http_access deny !localhost !manger

but it block every request from client

-- 
View this message in context: http://www.nabble.com/ACLs-tp22844495p22844495.html
Sent from the Squid - Users mailing list archive at Nabble.com.

Received on Thu Apr 02 2009 - 10:00:15 MDT

This archive was generated by hypermail 2.2.0 : Tue Apr 07 2009 - 12:00:02 MDT