RE: AW: AW: [squid-users] max_user_ip not working in squid-2.6S4

From: Mernoz Rostangi <[email protected]>
Date: Thu, 05 Oct 2006 12:48:20 +0200

Hi,

can you try:

>http_access deny concurrent_browsing
>http_access deny !password all
>http_access allow password
>http_access deny all

instead of:

>#http_access deny !password all
>http_access deny concurrent_browsing
>http_access deny !password all
>http_access allow password
>http_access deny all

----- Original Message -----
From: Marco Berizzi
[mailto:pupilla@hotmail.com]
To: Werner.Rost@zf.com
Cc:
squid-users@squid-cache.org
Sent: Thu, 05 Oct 2006 12:16:50 +0200
Subject:
RE: AW: AW: [squid-users] max_user_ip not working in squid-2.6S4

> This message is from cache.log:
>
> 2006/10/05 12:05:50| The reply for GET http://blabla/css/css06a.css is
> ALLOWED, because it matched 'concurrent_browsing'
>
> Very tricky isn't it?
>
> Marco Berizzi wrote:
>
> >I was forgotting...
> >I have tested squid2.6STABLE{1,2,3,4}: same behaviour
> >
> >Werner.Rost@zf.com wrote:
> >
> >>Please send all http_access statements of your squid.conf
> >
> >This is my full squid.conf
> >
> >http_port 7777
> >icp_port 0
> >
> >cache_mem 64 MB
> >
> >maximum_object_size 32 MB
> >
> >cache_replacement_policy heap LFUDA
> >memory_replacement_policy heap GDSF
> >
> >cache_dir ufs /var/spool/squid/cache 2047 16 256
> >
> >access_log /var/spool/squid/logs/access.log
> >cache_log /var/spool/squid/logs/cache.log
> >cache_store_log none
> >logfile_rotate 3
> >
> >pid_filename /var/run/squid.pid
> >coredump_dir /var/spool/squid/cache
> >
> >debug_options ALL,9
> >
> >auth_param ntlm program /usr/libexec/squid/ntlm_auth domain/ntexve
> >auth_param ntlm children 5
> >auth_param ntlm keep_alive on
> >
> >#authenticate_ip_ttl 10800 seconds
> >authenticate_ip_ttl 600 seconds
> >
> >acl all src 0.0.0.0/0.0.0.0
> >acl mynet src 172.16.0.0/23
> >acl concurrent_browsing max_user_ip -s 1
> >acl password proxy_auth_regex "/etc/squid/allowusers"
> >
> >#http_access deny !password all
> >http_access deny concurrent_browsing
> >http_access deny !password all
> >http_access allow password
> >http_access deny all
> >
> >And this is my build script:
> >
> >CFLAGS="-O2" ./configure \
> > --prefix=/usr \
> > --sysconfdir=/etc/squid \
> > --localstatedir=/var/spool/squid \
> > --libexecdir=/usr/libexec/squid \
> > --datadir=/usr/share/squid \
> > --enable-removal-policies="heap" \
> > --enable-delay-pools \
> > --enable-useragent-log \
> > --disable-wccp \
> > --disable-wccpv2 \
> > --enable-ssl \
> > --enable-default-err-language=Italian \
> > --enable-err-languages="English Italian" \
> > --enable-epoll \
> > --enable-http-violations \
> > --disable-ident-lookups \
> > --enable-auth="basic ntlm" \
> > --enable-basic-auth-helpers="MSNT" \
> > --enable-ntlm-auth-helpers="SMB" \
> > i486-slackware-linux
> >
> >CFLAGS="-O2" make all
> >
> >My env: squid-2.6s4, slackware linux 11.0 + linux 2.6.18
> >I'm able to simultaneously browse the internet from two
> >different workstation.
> >
> >
>
>
>
Received on Thu Oct 05 2006 - 04:47:46 MDT

This archive was generated by hypermail pre-2.1.9 : Wed Nov 01 2006 - 12:00:04 MST