RE: [squid-users] squid blocks all websites
It didn't make sense to me either, my initial configuration didn't look like that. After trying unsuccessfully to make it work, I followed an example I saw online at http://www.uniforum.ch.il.us/slides/squid/sld030.htm I'll go back over the material, thanks for the suggestion. Bryan -Original Message- From: Christoph Haas [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 08, 2005 2:47 PM To: squid-users@squid-cache.org Subject: Re: [squid-users] squid blocks all websites On Tue, Mar 08, 2005 at 02:38:53PM -0500, Bryan Miles wrote: > Squid is blocking all websites > [...] > acl localhost src 127.0.0.1/255.255.255.255 > acl gchi src 192.168.70.0/255.255.255.0 > acl all src 0.0.0.0/0.0.0.0 > acl SSL_ports port 443 563 > acl Safe_ports port 80 21 443 563 70 210 280 488 591 777 1025-65535 > acl CONNECT method CONNECT > http_access deny CONNECT !SSL_ports > http_access deny !Safe_ports > http_access deny CONNECT > http_access allow localhost > http_access allow gchi > http_access allow all > http_access deny all First you allow only a few IPs, then you allow IPs and finally you deny everyone? That doesn't make much sense. Please read on ACLs in the documentation. If you are still denied access then set "debug_options ALL,1 33,2" in your squid.conf, restart squid and watch the cache.log. Regards Christoph -- ~ ~ ".signature" [Modified] 3 lines --100%--3,41 All
Re: [squid-users] squid blocks all websites
On Tue, Mar 08, 2005 at 02:38:53PM -0500, Bryan Miles wrote: > Squid is blocking all websites > [...] > acl localhost src 127.0.0.1/255.255.255.255 > acl gchi src 192.168.70.0/255.255.255.0 > acl all src 0.0.0.0/0.0.0.0 > acl SSL_ports port 443 563 > acl Safe_ports port 80 21 443 563 70 210 280 488 591 777 1025-65535 > acl CONNECT method CONNECT > http_access deny CONNECT !SSL_ports > http_access deny !Safe_ports > http_access deny CONNECT > http_access allow localhost > http_access allow gchi > http_access allow all > http_access deny all First you allow only a few IPs, then you allow IPs and finally you deny everyone? That doesn't make much sense. Please read on ACLs in the documentation. If you are still denied access then set "debug_options ALL,1 33,2" in your squid.conf, restart squid and watch the cache.log. Regards Christoph -- ~ ~ ".signature" [Modified] 3 lines --100%--3,41 All
[squid-users] squid blocks all websites
Squid is blocking all websites, here's what IE tells me: ERROR The requested URL could not be retrieved The following error was encountered: Access Denied. Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect. Your cache administrator is root. I've tried different acl configurations but here's what I'm using now #Recommended minimum configuration: acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl gchi src 192.168.70.0/255.255.255.0 acl all src 0.0.0.0/0.0.0.0 acl SSL_ports port 443 563 acl Safe_ports port 80 21 443 563 70 210 280 488 591 777 1025-65535 acl CONNECT method CONNECT http_access deny CONNECT !SSL_ports http_access deny !Safe_ports http_access deny CONNECT http_access allow localhost http_access allow gchi http_access allow all http_access deny all --- Any help would be greatly appreciated! Bryan
