[squid-users] squid time acls + auth acls

From: Alberto Sierra <[email protected]>
Date: Tue, 30 Nov 2004 16:31:43 -0600

hi!, im using dansguardian (port 8080) + squid (default port), and i
want to achieve the following goals:

VIP clients (10.1.1.40-10.1.1.50) always internet
supervisors (using username/password)
rest of the people: time acl-dependent

my current setup is this:

acl safe_list dstdomain "/etc/squid/safe_list"
acl ViP src 10.1.1.40-10.1.1.50/32
acl work time MTWHF 15:00-19:50
acl sat time A 00:00-23:59
acl time1 time S 09:00-10:10
acl time2 time S 11:15-11:45
acl time3 time S 12:30-13:20
acl time4 time S 14:45-15:15
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255

http_access allow ViP
http_access allow safe_list
# deny access to dansguardian by time:
http_access deny localhost time1
http_access deny localhost time2
http_access deny localhost time3
http_access deny localhost time4

now, i have first to uncomment the line

acl password proxy_auth REQUIRED

and

http_access allow localhost password

for the authentication to work, but my question then is if i can put 3
ACLs together like:

http_access deny localhost password !work

or how can i address this situation??

thanks

Alberto
Received on Tue Nov 30 2004 - 15:32:02 MST

This archive was generated by hypermail pre-2.1.9 : Wed Dec 01 2004 - 12:00:02 MST