Amos Jeffries wrote:
> Dayo Adewunmi wrote:
>> Hi all
>>
>> I'm using squid 2.6.18-1ubuntu3 on Ubuntu 8.04. So far I've
>> configured it
>> to deny access to a set of sites for all users, during the period of
>> 8am-8pm.
>> Now, I want to grant certain users 24/7 access to the restricted sites.
>> I've tried it with these ACLs:
>>
>> acl academic01 time MTWHFAS 08:00-20:00
>> acl exempt src 192.168.2.127
>> acl media-sites url_regex -i (..........)
>> http_access deny media-sites academic
>>
>> acl noaccess dstdomain "/etc/squid/noaccess.dat"
>> http_access allow noaccess exempt
>> http_access allow noaccess !academic01
>> http_access deny noaccess
>>
>> They do grant the exempted user access, but the problem is, after 8pm
>> the others
>> are still blocked from accessing the restricted sites.
>> Please help.
>>
>> Best regards
>>
>> Dayo
>
> Couple of points...
>
> I think the blockage is happening because of "media-sites". Your
> bypass is on "noaccess", and only happens after media-sites is allowed.
>
> Also, the media-sites checks can be sped up a LOT by simply making it:
>
> http_access deny academic media-sites
>
> Amos
It's working now, after reloading the config one more time. I also
followed your optimization advice and put the "academic" ACL first.
Thanks everyone
Dayo
Received on Fri Dec 04 2009 - 21:40:40 MST
This archive was generated by hypermail 2.2.0 : Sat Dec 05 2009 - 12:00:01 MST