Hi Vasudeva,

It is possible to do what you have mentioned in the mail.... Following is the configuration that is working in my system....

1. Make a file (eg: /tmp/allowedsites) that contain urls of allowed sites. 2. Make a file eg: /tmp/allowedmachs that contain ips of allowed machines

3. edit squid.conf as follows:--

acl allowedmachs src "/tmp/allowedmachs" acl allowedsites url_regex "/tmp/allowedsites" http_access allow allowedmachs allowedsites http_access deny all

See to it that you put these lines in the ACCESS CONTROLS section in squid.conf...

It seems in your system it didnt work because you didnt mention the last line "http_access deny all"....Squid by default allows all.... The above lines will be interpreted as "allow access to selected sites by selected machines and deny others"...

regards, Sabu

From: "K.Vasudeva" vasu@ncbs.res.in Reply-To: linuxers@mm.ilug-bom.org.in To: linuxers@mm.ilug-bom.org.in Subject: [ILUG-BOM] [blug-tech] Regarding Squid ACL's (fwd) Date: Mon, 30 Sep 2002 15:21:40 +0530 (IST)

Dear all,

Is there any possibilty of providing some set of url access to some set of machines using acl's.I tried creating a file for allowed machines and allowed sites and gave http_access allow allowedmachines allowedsites but it's not working and i can access all the sites which are not in allowedsites list.

i made entries in squid.conf

acl allowed-machines src path to the machine ip's file acl allowed-sites url_regex

http_access allow allowed-machines allowed-sites.

thanks in advance

-- K.Vasudeva National Centre For Biological Sciences Tata Institute of Fundamental Research UAS_GKVK Campus Bellary Road Bangalore - 560 065 Phone: 080-3636421-31 Extn 3010 Fax : 080-3636662 Email:vasu@ncbs.res.in vasu_k@vsnl.net

---

http://mm.ilug-bom.org.in/mailman/listinfo/linuxers

_________________________________________________________________ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx