- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - Linux
- >
- squid acl - plz help
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-06-2006 06:56 AM
10-06-2006 06:56 AM
httpd_access allow mynet
Now I have to deny 192.168.1.13-34 and 192.168.40-71. Right now I have done the following
acl mynet src 192.168.1.0/24
acl pc13 src 192.168.1.13/32
.
.
.
acl pc13 src 192.168.1.34/32
acl pc13 src 192.168.1.40/32
.
.
.
acl pc13 src 192.168.1.71/32
httpd_access deny pc13
.
.
httpd_access deny pc34
.
.
httpd_access deny pc71
httpd_access allow mynet
Any better approach/suggestion/efficient way to acheive the target ? plz share
Regards
Maaz
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-06-2006 07:03 AM
10-06-2006 07:03 AM
			
				
					
						
							Re: squid acl - plz help
						
					
					
				
			
		
	
			
	
	
	
	
	
acl pc13 src 192.168.1.13/32
.
.
.
acl pc34 src 192.168.1.34/32
acl pc40 src 192.168.1.40/32
.
.
.
acl pc71 src 192.168.1.71/32
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-06-2006 07:16 AM
10-06-2006 07:16 AM
			
				
					
						
							Re: squid acl - plz help
						
					
					
				
			
		
	
			
	
	
	
	
	
acl mynet src 192.168.1.0/24
acl bad_pc src 192.168.1.34 192.168.1.40 192.168.1.71
httpd_access deny bad_pc
httpd_access allow mynet
you can get more info here:
http://www.squid-cache.org/Doc/FAQ/FAQ-10.html
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-07-2006 06:01 AM
10-07-2006 06:01 AM
			
				
					
						
							Re: squid acl - plz help
						
					
					
				
			
		
	
			
	
	
	
	
	
You configuration is fine, don't forget to test it to make sure it denies and allows as you think it should.
Even after sucessfully making this work for RHCE class I'm not a big fan of this tool. I suppose its useful to improve access speeds by caching content.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-12-2006 02:34 AM
10-12-2006 02:34 AM
			
				
					
						
							Re: squid acl - plz help
						
					
					
				
			
		
	
			
	
	
	
	
	
>acl bad_pc src 192.168.1.34 192.168.1.40 192.168.1.71
>httpd_access deny bad_pc
Alexander, this will only blck 3 machines i.e 34, 40, and 71. I need to deny the range of ipes .. from 13-34, and from 40-71.
Anyway thanks for help.
Regards
Maaz
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-12-2006 03:02 AM
10-12-2006 03:02 AM
Solutionacl badip src "/etc/squid/ip.deny"
http_access deny badip
Then specify the denied ip addresses in the ip.deny file, one IP by line.
