Re: [squid-users] limit access with acl only based on source and destination domain

> acl From_Source_Domains srcdomain domain1 domain2 domain3 > acl To_Destination_Domains dstdomain domain4 domain5 domain6 if: > http_access allow From_Source_Domains or, if: > http_access allow To_Destination_Domains or, deny all According to your answer, if these are ORed, first http_access shou

Re: [squid-users] limit access with acl only based on source and destination domain

On 05/05/17 15:47, Blaxton wrote: What is the difference between : That is documented in if: http_access allow From_Source_Domains or, if: http_access allow To_Destination_Domains or, deny all versus ... if: http_access

Re: [squid-users] limit access with acl only based on source and destination domain

What is the difference between : http_access allow From_Source_Domains http_access allow To_Destination_Domains And http_access allow From_Source_Domains To_Destination_Domains ? From: Amos Jeffries To: squid-users@lists.squid-cache.org Sent: Wednesday, May 3, 2017 8:19 AM Subject:

Re: [squid-users] Squid dead error with 3.5.23

On 05/03/2017 10:21 PM, Nil Nik wrote: > Using Squid 3.5.23, After some time found squid dead with below errors. > Even i restart it doesn't start for some time (5-10 minutes). If your Squid started OK at some time and then, after working OK for a while, failed and could not be restarted after th

Re: [squid-users] Squid as Proxy/Web Filer only

Thank you for your answers. I will look the blacklist thing. I do not need too much control at this time. On Wed, May 3, 2017 at 11:38 PM, Amos Jeffries wrote: > On 04/05/17 06:54, Skyvolt Zoltar wrote: > >> Hi, I am completely new to Squid. >> >> I would like to know if it is possible to conf

Re: [squid-users] ssl bump and url_rewrite_program (like squidguard)

Hi Edouard, To block GET https://www.example.com/foo.html and to pass CONNECT www,example.com you need a) squid with ssl-bump in peek+bump mode b) ufdbGuard ufdbGuard can skip the CONNECT and waits for the GET request which can be blocked without browser errors. Since ssl-bump is not easy it i

Re: [squid-users] Tutorial for better authentication than basic

Wow, this only showed up in my email yesterday.  I blame Yahoo. I did respond earlier basically saying I would need to connect from different IPs. From: Eliezer Croitoru To: 'j m' ; squid-users@lists.squid-cache.org Sent: Wednesday, May 3, 2017 6:37 PM Subject: RE: [squid-users] Tutori

Re: [squid-users] Passing Windows username to parent proxy

I just read http://wiki.squid-cache.org/Features/LogFormat. The 8th column is showing - rather than a user name, could this be the issue? What causes a - to be shown rather than a users name and how can I get round this? -- View this message in context: http://squid-web-proxy-cache.1019090.n4.n

Re: [squid-users] ssl bump and url_rewrite_program (like squidguard)

Hi community, Any news about this? I've tried 3.5.25 but still observe this behaviour. I understand it well since I read: https://serverfault.com/questions/727262/how-to-redirect-https-connect-request-with-squid-explicit-proxy But how to let the CONNECT request succeed and later block/redire

Re: [squid-users] Passing Windows username to parent proxy

Is there a way to view what Squid is forwarding so that I can inspect the packets to prove that Squid is sending user information as I have a call open with the firewall vendor and I want to be able to tell them with certainty that it is an issue at the firewall end rather than the Squid end. Than