Re: ACL to protect internal webservers ?

From: Karl Schaffarczyk <[email protected]>
Date: Sat, 27 Jun 98 09:08:25 +1000

>I try to use Squid 1.0.22 on FreeBSD 2.2.2-RELEASE. Inside squid.conf, I
>define an ACL for the hosts in my domain. I grand http_access to this acl,
>and deny http_access to anyone else:
>
>acl manager proto cache_object
>acl localhost src 127.0.0.1/255.255.255.255
>acl all src 0.0.0.0/0.0.0.0
>acl SSL_ports port 443 563
>acl CONNECT method CONNECT
>
>acl santaclaus domain santaclaus.com

acl local_ips src 1.2.3.4/255.255.255.0 (whatever your local IPs/subnet
masks are)
>
http_access deny all !local_ips
>http_access allow manager santaclaus
>http_access deny manager
>http_access allow santaclaus
>http_access deny all
>
Regards
Karl
=8)
Received on Fri Jun 26 1998 - 16:09:27 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:40:53 MST