[squid-users] Sslbump with multiple users and multiple ACLs for each

[stressedtux]

Ty guys. I think i was finally able to solve it. 

For those who have the same problem, this was my solution:



#### Proxy Port
http_port 80 


################################
#### BEGIN  
################################

##  ACLs localnet
acl localnet src XXX.XXX.0.0/16	# My Network1
acl localnet src XXX.XXX.0.0/16	# My Network2

# ACLs Ports
acl http proto http
acl port_80 port 80
acl port_443 port 443
acl CONNECT method CONNECT


### 
auth_param basic program /usr/lib64/squid/basic_ncsa_auth
/etc/squid/passwords
auth_param basic realm proxy
acl authenticated proxy_auth REQUIRED

#########

#### Auth parameters
auth_param basic program /usr/lib64/squid/basic_ncsa_auth
/etc/squid/passwords
auth_param basic realm proxy
acl authenticated proxy_auth REQUIRED


##### Rules for global users, non-authenticated - "Global Whitelist"
acl global_whitelist dstdomain "/etc/squid/global_whitelist"
http_access allow http localnet port_80 global_whitelist
http_access allow CONNECT localnet port_443 global_whitelist


##### Rule for autenticated user stressedtux
acl login_stressedtux proxy_auth stressedtux
acl sites_stressedtux dstdomain "/etc/squid/sites_stressedtux.txt"
http_access allow http port_80 localnet sites_stressedtux login_stressedtux
http_access allow CONNECT port_443 localnet sites_stressedtux
login_stressedtux


##### Rules for autenticated users of "group" usrgrp1
acl login_usrgrp proxy_auth "/etc/squid/list_users_usrgrp1.txt"
acl sites_usrgrp dstdomain "/etc/squid/sites_usrgrp1.txt"
http_access allow http port_80 localnet sites_usrgrp login_usrgrp
http_access allow CONNECT port_443 localnet sites_usrgrp login_usrgrp

##### Block everything else
http_access deny all


################################
#### END
################################







--
Sent from: http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html