I'm testing squid and want to allow only one domain but it is not working (using iptable + squid) iptable: ACCEPT tcp -- anywhere anywhere tcp dpt:http owner UID match squid ACCEPT tcp -- anywhere anywhere tcp dpt:3128 owner UID match squid REDIRECT tcp -- anywhere anywhere tcp dpt:http redir ports 3128
squid: # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS acl GOOD dstdomain .google.ca http_access allow GOOD http_access deny all Why it doesn't work? Squid access log entry: 1263964263.464 0 192.168.1.5 NONE/400 1828 GET / - NONE/- text/html -- Joseph