[squid-users] limit access with acl only based on source and destination domain

Blaxton blaxxton at yahoo.com
Fri May 5 04:23:52 UTC 2017


> acl From_Source_Domains srcdomain domain1 domain2 domain3
> acl To_Destination_Domains dstdomain domain4 domain5 domain6
if:
> http_access allow From_Source_Domains
or, if:
> http_access allow To_Destination_Domains
or, deny all

According to your answer, if these are ORed, first http_access should allow connection to everywhere from  domain1,domain2,domain3Second http_access allow connections to from everywhere.

Is above statement correct ?


      From: Amos Jeffries <squid3 at treenet.co.nz>
 To: "squid-users at lists.squid-cache.org" <squid-users at lists.squid-cache.org> 
 Sent: Thursday, May 4, 2017 11:12 PM
 Subject: Re: [squid-users] limit access with acl only based on source and destination domain
   
On 05/05/17 15:47, Blaxton wrote:
> What is the difference between :

That is documented in 
<http://wiki.squid-cache.org/SquidFaq/SquidAcl#Common_Mistakes>


if:
> http_access allow From_Source_Domains
or, if:
> http_access allow To_Destination_Domains
or, deny all


versus ...

if:
> http_access allow From_Source_Domains To_Destination_Domains
or, deny all.



Amos
_______________________________________________
squid-users mailing list
squid-users at lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users


   
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20170505/300c301c/attachment-0001.html>


More information about the squid-users mailing list