On Tue, 17 Feb 2004, Claas Hilbrecht wrote:
> I need to configure oops in that way that users that wants to connect to
> 10.73/16 and dstdomain pnof will work without authentication but users that
> want to connect to any other site need to supply a password. I tried any
> combination but I seems that the following that worked with squid didn't
> work with oops:
>
> http_access allow !local_servers allowed_hosts logon
> http_access allow local_servers
> # And finally deny all other access to this proxy
> http_access deny all
No, you have to define 'groups' in terms of oops.
Something like:
acl DSTNET dst_ip 10.73/16
acl DSTDOM dstdom pnof
group noauthaccess {
networks_acl DSTNET
networks_acl DSTDOM
http {
allow dstdomain * ;
}
}
group authaccess {
auth_mods passwd_file;
networks 0/0;
http {
allow dstdomain * ;
}
}
notes:
1.lines
networks_acl DSTNET
networks_acl DSTDOM
in definition of noauthaccess works as logical OR.
2. auth_mods passwd_file; - you cah change to any other authentication
method
networks 0/0; - you can change to other networks definition
see more explanations in oops.cfg.in
>
> ---
> Claas Hilbrecht
> http://www.jucs-kramkiste.de
>
> =====================================================================
> If you would like to unsubscribe from this list send message to
> [EMAIL PROTECTED] with "unsubscribe oops-eng" in message body.
> Archive is accessible on http://lists.paco.net/oops-eng/
>
Igor Khasilev |
PACO Links, igor at paco dot net |
=====================================================================
If you would like to unsubscribe from this list send message to
[EMAIL PROTECTED] with "unsubscribe oops-eng" in message body.
Archive is accessible on http://lists.paco.net/oops-eng/
