Squid2.2Stable3 Access Controls

From: Suresh Ganu <[email protected]>
Date: Tue, 29 Jun 1999 14:12:33 -0500

I have squid2.2.Stable3 on RedHat5.2 running with following rules:
1) valid source IP address,
2) User/Password authentication,
3) Access based on time of the day.

I have noticed that some smart users keep Yahoo pager page or PointCast
running, to get around authorized hours. Once a user is in, time restriction
is not checked again. Anyway around that?

My ACL stuff:

acl local-servers dstdomain local.com
acl SSL method CONNECT
acl CONNECT method CONNECT
acl GETPOST method GET POST
acl timerange time 06:00-20:30
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Dangerous_ports port 7 9 19

acl password proxy_auth REQUIRED

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255

acl validips src 192.128.8.200 192.128.8.210 192.128.8.214

http_access allow validips timerange password
http_access deny all

Another side issue, my Squid1.1.2x seemed to cache lot of stuff. My latest
squid seems to be going to parent more often. Just a feeling...

Is there a tool/script something that analyzes how 'good' my squid set-up is or
could be?

Thanks..
Received on Tue Jun 29 1999 - 13:03:07 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:47:03 MST