Hi,
I noted that acl based reply_body_max_size works correctly ONLY if I add the acl in one of http_access directives!
My acl is an EXTERNAL one (ldap_group in particular).
external_acl_type ldap_group %LOGIN /usr/lib/squid/squid_ldap_group -b ou=people,dc=domain,dc=it -f "(&(uid=%u)(Mygroup=%g))" -D cn=user,ou=apps,dc=domain,dc=it -w password -H ldap://ldapserver:389
acl unlimited external ldap_group unlimited
.
.
.
reply_body_max_size 1000000 allow !unlimited
This works only if I add http_access allow unlimited !unlimited that is never true and doesn't alter my access rules.
Is the same for you? If yes I think this is a bug
Regards MArco
Hi all,
Is there a way to use multiple reply_body_max_size entries in a squid.conf configuration file? I mean, for some "special users" I need no restriction for downloading files from Internet and for the rest of the users I need to restrict to a 10MB maximum download size. I'm trying this configuration without success:
acl USERS external NTGroup DOMAIN_GROUP1 acl SPECIAL_USERS external NTGroup DOMAIN_GROUP2 . . . reply_body_max_size 0 allow SPECIAL_USERS reply_body_max_size 10485760 allow USERS
Anyone can help me? Thanks in advance,
Carlos Eduardo Gomes Marins.
SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497
