| Paulo Andre on Tue, 17 Jun 2003 12:00:57 +0200 (SAST) |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| [GLUG-tech] Re: sqid proxy |
On Tuesday 17 June 2003 10:26, Henti Smith wrote: > > ie > > > > acl news dstdomain .news24.com > > http_access deny news > > http_access allow all > > This will deny .news24.com from using your squid proxy .. not what you > want. Also .. don't allow all for using your squid proxy as it opens you up > from other people using your proxy. > > acl's are for controlling who can use the proxy not what sites can be > viewed. > > > This is exactly what the man pages say yet it don't stop me going to the > > address. Perhaps I've put it in the wrong place? > > You need a content blocking / filter .. something like squidguard is what > you are looking for. > > Henti Smith Actually you can use the ACL's to limit what sites you want to browse... Basically squidguard does the same as ACL's just 'suppose' to be easier to config with a little extra functionality. Neil try the following... acl allow_users src 'your ip range (172.17.4.0/24)' acl limit_users src 'some subnets' # if required acl banned_sites dstdomain "/location/to/file" # this works great for adding more sites http_access deny limit_users banned_sites http_access allow allow_users http_access deny all Neil bear in mind that you must configure this like you would your firewalls, deny everything and allow what you would like to go through. Paulo --- To unsubscribe: send the line "unsubscribe glug-tech" in the subject of a mail to "glug-tech-request@xxxxxxxxxxxx". Problems? Email "glug-tech-admins@xxxxxxxxxxxx". Archives are at http://www.linux.org.za/Lists-Archives/