[squid-users] Access Denied for manager
Amos Jeffries
squid3 at treenet.co.nz
Wed Apr 18 07:08:11 UTC 2018
On 18/04/18 08:50, James Moe wrote:
> Hello,
> squid v3.5.21
> linux v4.4.120-45-default x86_64
>
> The "manager" is suddenly denied access. I am not aware of any recent
> updates. This did work 3 days ago.
> Is the ACL correct?
Maybe, maybe not.
>
> acl manager_admin src 192.168.69.115
Yet you have two other localnet ranges this machine can potentially be
part of:
> #
> acl localnet src fc00::/7
> acl localnet src fe80::/10
...
> acl localnet src 192.168.69.0/24
If the manager_admin machine ever tries to use those IPv6 localnet it
will not be permitted access to the "manager" reports. It can only
access them over its IP address in that manager_admin ACL.
For better ideas look as what your access.log states when the manager
report is attempted.
>
> access_log /var/log/squid/access.log
>
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow manager_admin
> http_access allow manager localhost
> http_access deny manager
> http_access allow localnet
> http_access deny all
>
Amos
More information about the squid-users
mailing list