[squid-users] Re: Dual auth based on IP source

From: David Rodr�guez Fern�ndez <davidrf_at_gmail.com>
Date: Thu, 8 Jan 2009 10:27:43 +0100

Hi,

I have my own auth_param basic program script to authenticate my squid
users. My perl script is working fine. I do an autentication based on
login/password and a query to an oracle database.

I have a squid server for all mi organization. All the users are
browsing the web through this server. The users need an username and
password to access Internet and a valid record on the oracle database.
I have a vpn users who connect with the organization net over gprs/3g
mobiles and laptops. All of these users have access to squid, but I
don't want that all mobile users to browse the Internet over a mobile
connection, only the VIPs ones (we pay for total bytes transferred).
The vpn don't know nothing about limit user access based on login
username, so I need to limit this on squid config. All the mobile
connection comes to squid from a separate IP network, so I can decide
if a user have access to squid based in IP source/login/password.

There's some configuration that I can have 2 separate auth_param basic
program scripts based on source IP?

I can change the behavior of data entry?
from:
login password
to:
IP login password

There's another more simple solution?
Received on Thu Jan 08 2009 - 09:29:08 MST

This archive was generated by hypermail 2.2.0 : Fri Jan 09 2009 - 12:00:02 MST