[squid-users] Antwort: [squid-users] Banning MAC addresses in squid3

From: <Martin.Pichlmaier_at_continental-corporation.com>
Date: Wed, 24 Jun 2009 12:17:46 +0200

Hi Dayo,

you have to recompile squid for this with the additional configure option
'--enable-arp-acl'.
There are some other constraints, read through the documention (for
example the config file).

<snip from config file version 3.0.STABLE15>
# acl aclname arp mac-address ... (xx:xx:xx:xx:xx:xx notation)
# # The arp ACL requires the special configure option
--enable-arp-acl.
# # Furthermore, the ARP ACL code is not portable to all operating
systems.
# # It works on Linux, Solaris, Windows, FreeBSD, and some other
*BSD variants.
# #
# # NOTE: Squid can only determine the MAC address for clients
that are on
# # the same subnet. If the client is on a different subnet, then
Squid cannot
# # find out its MAC address.
</snip>

Best regards,
Martin

Dayo Adewunmi <contactdayo_at_gmail.com>
24.06.2009 11:52
Bitte antworten an
contactdayo_at_gmail.com

An
squid-users_at_squid-cache.org
Kopie

Thema
[squid-users] Banning MAC addresses in squid3

Hi all,

I'm trying to block MAC address with this ACL:

acl banned_MAC arp 00:1a:73:ff:fa:9a
http_access deny banned_MAC

...and restarting squid3 gives me this error:

2009/06/24 10:34:52| Reconfiguring Squid Cache (version 3.0.STABLE1)...
2009/06/24 10:34:52| FD 12 Closing HTTP connection
2009/06/24 10:34:52| FD 15 Closing ICP connection
2009/06/24 10:34:52| aclParseAclLine: Invalid ACL type 'arp'

Is there something else that needs to be included for 'arp' to become a
valid ACL type?

Best regards

Dayo
Received on Wed Jun 24 2009 - 10:18:11 MDT

This archive was generated by hypermail 2.2.0 : Wed Jun 24 2009 - 12:00:04 MDT