[squid-users] guideline on limiting users per IP

Amos Jeffries squid3 at treenet.co.nz
Wed Jan 13 03:59:00 UTC 2016


On 13/01/2016 3:23 p.m., 3 at D4rkn3ss DuMb wrote:
> Dear Amos,
> 
> Thank you. I didn't know that it cannot yet work on token based auth.So
> there is no work around?

It cant work that way because the tokens are unique per login. The
"username" is not part of the credentials, just a label the helper gives
to Squid fro logging.

You could work around it with an external ACL helper that takes the user
name/label and IP and tells Squid whether to allow or block that request.
Or the key_extras feature to pass the IP to the helper and reject login
from other IPs.

Amos



More information about the squid-users mailing list