Re: [squid-users] Exception for src client PC

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Tue, 02 Jun 2009 21:52:20 +1200

Boniforti Flavio wrote:
> Hello list,
>
> following is my setup (in relation to ACLs):
>
> acl localnet src 10.0.0.0/24
> acl domini_bloccati dstdomain "/etc/squid3/domini_bloccati.acl"
> http_access deny localnet domini_bloccati
>
> How do I add an exception for one client of that network?
> I thought to write it like:
>
> acl localnet src 10.0.0.0/24
> acl domini_bloccati dstdomain "/etc/squid3/domini_bloccati.acl"
> acl super_users src myhostname
> http_access allow super_users
> http_access deny localnet domini_bloccati
>
> Would this setup allow the rules to be read only until the "http_access
> allow super_users" line, if the client connecting through squid would be
> "myhostname"?

Yes. Assuming Squid can resolve 'myhostname' to an IP address during
squid.conf loading which can be used by the 'src' type ACL.

Otherwise your guess is correct.

Amos

-- 
Please be using
   Current Stable Squid 2.7.STABLE6 or 3.0.STABLE15
   Current Beta Squid 3.1.0.8 or 3.0.STABLE16-RC1
Received on Tue Jun 02 2009 - 09:52:30 MDT

This archive was generated by hypermail 2.2.0 : Tue Jun 02 2009 - 12:00:01 MDT