Re: [squid-users] ALlow FTP acces to specific set of IP's

From: Tejpal Amin <tejpal.amin_at_gmail.com>
Date: Mon, 21 Jun 2010 16:45:14 +0530

> Mathus
>
> The ACL is
> acl ftp_port port 21
> acl ftp_access src 10.202.2.221/255.255.255.255
> acl CONNECT method CONNECT
> http_access allow CONNECT ftp_access ftp_port
>
> Regards
> Tej
>
> On Mon, Jun 21, 2010 at 3:40 PM, Matus UHLAR - fantomas
> <uhlar_at_fantomas.sk> wrote:
>> On 16.06.10 19:25, Tejpal Amin wrote:
>>> I have addedd teh following lines to my squid.conf
>>> acl FTP_PORT port 21
>>> acl src x.x.x.x/255.255.255.255
>>> http_access allow CONNECT ftp_access ftp_acces
>>
>> what are ftp_access and ftp_acces ACLs? I don't see them defined.
>>
>>> the followig is output in my access.log
>>>
>>> CONNECT ftp.hp.com:21 HTTP/1.1" 200 72 TCP_MISS:DIRECT
>>> 10.202.2.221 - - [16/Jun/2010:18:49:28 +0530] "GET
>>> ftp://ftp.hp.com/pub/softlib2/software1/sc-windows/p1328960757/v59771/cp012593.exe
>>> HTTP/1.0" 403 2183 TCP_DENIED:NONE
>>
>> --
>> Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
>> Warning: I wish NOT to receive e-mail advertising to this address.
>> Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
>> "One World. One Web. One Program." - Microsoft promotional advertisement
>> "Ein Volk, ein Reich, ein Fuhrer!" - Adolf Hitler
>>
>
Received on Mon Jun 21 2010 - 11:15:21 MDT

This archive was generated by hypermail 2.2.0 : Mon Jun 21 2010 - 12:00:03 MDT