On 08/10/10 03:26, Philipp Herz - Profihost AG wrote:
> Hello everybody,
>
> actually i'm trying to migrate a Squid/SquidGuard setup from Squid
> (3.0.STABLE19) to Squid (3.1.3).
>
> The problem is, that i am not able to exclude a single client identified
> by it's ip or mac address from being proccessed by SquidGuard as the
> redirector.
>
> acl my_net src 192.168.0.0/16
> acl c_by_IP src 192.168.0.99
> acl c_by_MAC arp aa:bb:cc:dd:ee:ff
>
> http_access allow my_net
> http_access deny all
>
> redirector_access deny c_by_IP
> redirector_access deny c_by_MAC
>
> # url_rewrite_access deny c_by_IP
> # url_rewrite_access deny c_by_MAC
>
> url_rewrite_program /usr/bin/squidGuard
> url_rewrite_children 5
>
> None of the attempts above are working for Squid (3.1.3). Using
> directive "redirector_access deny" with Squid (3.0.STABLE19) works as
> expected.
>
> So, could you please give me any hints on how to get this thing working
> or is there any known bug or limitation why it's not working with 3.1.3?
>
> Thanks - philipp
Nothing comes to mind. IP should be working even if ARP fails.
NP: "url_rewrite_access" is the correct config out of those attempts and
is identical in meaning for all Squid since redirector_access was
deprecated by 2.5.
Firstly check the order of url_rewrite_access lines (*all of them*).
First match wins.
Then try tracing the access control tests in cache.log with:
debug_options 28,3 61,5
If that does not show the problem up try with the latest Squid-3.1 code.
Amos
-- Please be using Current Stable Squid 2.7.STABLE9 or 3.1.8 Beta testers wanted for 3.2.0.2Received on Fri Oct 08 2010 - 06:12:07 MDT
This archive was generated by hypermail 2.2.0 : Fri Oct 08 2010 - 12:00:03 MDT