Re: [squid-users] Squid 3.2.6 - blocking hosts by regexp? from Eliezer Croitoru on 2013-01-23 (squid-users)

From: Eliezer Croitoru <eliezer_at_ngtech.co.il>
Date: Wed, 23 Jan 2013 19:26:58 +0200

On 1/23/2013 3:32 PM, Ralf Hildebrandt wrote:
>>> 1358927965.305 90252 141.42.xxx.69 TCP_MISS/200 2711 CONNECT download.teamviewer.com:443 - HIER_DIRECT/46.163.100.220 -
>>> 1358928992.439 74 141.42.xxx.115 TCP_MISS/200 9 CONNECT ping3.teamviewer.com:443 - HIER_DIRECT/95.211.37.197 -
>>> Idea:
>>>
>>> acl teamviewer-ssl url_regex ^(master|ping)[0-9]+\.teamviewer\.com
>>> http_access deny teamviewer-ssl
>>
>> If you want to block teamviewer totally, dstdomain would be faster:
>>
>> acl teamviewer dstdomain .teamviewer.com
>> http_access deny teamviewer
>
> OK, I still want be able to access www.teamviewer.com :)
>

Then use dstdomain + CONECT method deny and allow dstdomain +
GET\POST|HEAD METHODS.

Eliezer
Received on Wed Jan 23 2013 - 17:27:11 MST

This archive was generated by hypermail 2.2.0 : Wed Jan 23 2013 - 12:00:05 MST