[squid-users] Forcing authentication on specific websites (forwarding)

Alex Rousskov rousskov at measurement-factory.com
Fri Mar 12 18:50:31 UTC 2021

On 3/12/21 12:17 PM, Joshua Rogers wrote:

> I am hoping to allow access to all websites through squid except certain
> websites. Sites which are not allowed will require authentication.
> I tried this configuration:
> http_access allow all

Game over. The order of http_access rules matters. The first matching
rule wins. An always-matching "all" rule renders any further http_access
rules useless.

I have not tested this, but I would start with something like this:

    http_access allow google google_users
    http_access deny google
    http_access allow all


> acl my_auth proxy_auth REQUIRED
> acl google_users proxy_auth user1 user2 user3
> acl google dstdomain .google.com <http://google.com>
> http_access deny google !google_users
> http_access allow my_auth 
> but it simply allowed access to all websites instead of blocking *only*
> .google.com <http://google.com>.
> Is this sort of configuration possible with Squid, and if so, how can it
> be done?
> Cheers,
> Josh
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users

More information about the squid-users mailing list