[prev in list] [next in list] [prev in thread] [next in thread] 

List:       squid-users
Subject:    Re: [squid-users] Fwd: Need help squid with whitelist
From:       Matus UHLAR - fantomas <uhlar () fantomas ! sk>
Date:       2021-11-08 12:26:18
Message-ID: 20211108122617.GD30392 () fantomas ! sk
[Download RAW message or body]

On 07.11.21 10:56, prasad mavuluru wrote:
>I have a squid proxy running on port 3128 allowing whitelisted file to
>allow specific sites. Is it possible to have another port squid proxy to
>allow different whitelist files ?. Is there any other approach to achieve
>this?


you can define multiple acls for multiple lists and you can apply different
lists for clients based on multiple conditions.

acl src1 src /etc/squid/src1
acl src2 src /etc/squid/src2
acl dst1 dstdomain /etc/squid/dst1
acl dst2 dstdomain /etc/squid/dst2

http_access allow src1 dst1
http_access allow src2 dst1
http_access deny all

this will

allow ip adresses listed in /etc/squid/src1 to contact detinations listed in /etc/squid/dst1
allow ip adresses listed in /etc/squid/src2 to contact detinations listed in /etc/squid/dst2

deny all the rest.


Note that squid.conf has default rules on what not to allow, e.g. safe
ports, safe SSL ports etc.



-- 
Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Depression is merely anger without enthusiasm.
_______________________________________________
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
[prev in list] [next in list] [prev in thread] [next in thread]