INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS

acl goodsites dstdomain .google.com.mx
acl goodsites dstdomain .microsoft.com
acl goodsites dstdomain .bajacallcenters.com
acl goodsites dstdomain .facebook.com

acl badsites dstdomain .nba.com

acl administracion src 172.31.3.0/24

acl NAR src 172.31.4.0/24
acl whitelist_NAR dstdomain "/etc/squid/whitelist_NAR"
acl EB src 172.31.7.0/24
acl whitelist_EB dstdomain "/etc/squid/whitelist_EB"
acl Java browser Java/1.4 Java/1.5 Java/1.6

acl javascript rep_mime_type -i ^application/x-javascript$ 
http_access allow NAR javascript 


http_access allow NAR Java
http_access allow administracion goodsites
http_access allow NAR whitelist_NAR
http_access allow EB whitelist_EB

# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
#http_access allow localnet
http_access allow localhost

# And finally deny all other access to this proxy
http_access deny all