Remove the netmask form the ACL and you should be fine. The netmask is
used to denote whole networks, not individual stations.
-- Henrik Nordstrom Squid hacker Bdl31ref wrote: > > Bastien Baltazar > Lyc�e Edmond Rostand > bdl31ref@ac-toulouse.fr > > I recently installed a squid proxy-cache on my 50 computers > network. It work so fine, except the fact I can't define acl groups, > cons�quenly allow or deny internet access for some rooms. > All of my clients have IP adresses like > 192.168.1.x/255.255.255.0, and when I define in the squid.conf file an acl > for the following range of ip : 192.168.1.100-192.168.1.140/255.255.255.0, > named s125 and I write at the following : > > "http_access allow s125" > "http_access deny all" > > Normaly, the clients with ip include in this range would be able > to connect, anothers should be rejects. Requests from localhost are denied : > everything is OK, I didn't allow it , but all clients can connects, even if > they have IP adresses out of the range values. > > I readed the "access.log", and was surprised to find this (file > : access.txt) > > This log mean that squid didn't know from were request come. I > think it's linked with the acl problem. > > Did somebody know this kind of problems > > PS : excuse my poor french english ! > > --------------------------------------------------------------- > > Name: access.txt > Part 1.2 Type: Plain Text (text/plain) > Encoding: quoted-printable -- To unsubscribe, see http://www.squid-cache.org/mailing-lists.htmlReceived on Wed Feb 28 2001 - 13:41:56 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:58:16 MST