Re: Connections only from localhost

From: Henrik Nordstrom <[email protected]>
Date: Sat, 24 Jul 1999 00:18:51 +0200

Erik Parker wrote:

> acl all src 0.0.0.0/0.0.0.0
> #acl all src 127.0.0.1/255.255.255.255
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl SSL_ports port 443 563
> acl Safe_ports port 80 81 21 443 563 70 210 1025-65535
> acl CONNECT method CONNECT
>
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow all localhost

The all in the line above is not needed.

> http_access deny !all

Your main problem is here. You denies "not any address" (double
negation, quite the opposite of what you want). The line should read:

http_access deny all

--
Henrik Nordstrom
Spare time Suqid hacker
Received on Fri Jul 23 1999 - 16:33:53 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:47:31 MST