2
我希望有一些魷魚專家。 我想配置我的squid.conf文件。 配置工作,但現在的問題是: 當我試圖阻止只有一個站點,它阻止一切...Squid3 URL Block
這裏是我的代碼:
acl manager proto cache_object
acl localhost src 127.0.0.1/32 ::1
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
acl biz_network src 10.1.42.0/24
acl biz_hours time M T W T F 9:00-17:00
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl fortytwo_network src 192.168.42.0/24
acl bad_url dstdomain .msn.com #### THIS IS THE 1ST LINE THAT CAUSE A PROBLEM ####
http_access allow biz_network biz_hours
http_access allow fortytwo_network
http_access deny bad_url #### THIS IS THE 2ND LINE THAT CAUSE A PROBLEM ####
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all
http_port 8080
coredump_dir /var/spool/squid3
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern (Release|Packages(.gz)*)$ 0 20% 2880
refresh_pattern . 0 20% 4320
visible_hostname BenNahmias
粗線將盡一切網址封鎖
沒有這行,我可以訪問所有URL的
我的問題是,什麼是線的正確順序(這些標誌着我),所以外核層我選擇的網站將被封鎖。
- 在此先感謝,Orel。