[plug] Transparent proxy ACL with squid
Kai Jones
Kaij at kamsc.org.au
Thu May 11 16:17:09 WST 2006
Hi everyone,
I've talked the boss into letting me install a Linux boxen among the
windows servers we have here, proxy/firewall is the first thing so I can
get some better security happening on the network.
Right now I'm working on my first bash at configurating a proxy server,
the server (Compaq Proliant 800) with Fedora Core 5 (2.6.15-1.2054_FC5)
and Squid 2.5 (squid-2.5.STABLE12-5.1), trying to get the ACL's working
properley but so far not having much luck. Reading through
http://www.squid-cache.org/Doc/FAQ/FAQ-10.html#ss10.4 is going ok but
I'm looking for a way I can reference text files in /etc/squid, one file
for domain blocking and the other for keyword blocking.
I've set my browser to go through the proxy and that works fine but the
ACL's aren't working.
So far I have:
acl urlBlock dstdomain urlBlock.txt
acl keywordBlock url_regex keywordBlock.txt
http_access deny urlBlock
http_access deny keywordBlock
http_access deny all
urlBlock.txt and keywordBlock.txt are stored in /etc/squid as is
squid.conf
I've also tried
acl ebay dstdomain www.ebay.com.au
acl ebay2 dstdomain www.ebay.com
acl ebay1 url_regex ebay
http_access deny ebay
http_access deny ebay1
http_access deny ebay2
http_access deny all
Any ideas are appreciated
Thanks
Kai
More information about the plug
mailing list