Re: [squid-users] Squid 3.2.6 - blocking hosts by regexp?

Eliezer Croitoru Wed, 23 Jan 2013 09:27:11 -0800

On 1/23/2013 3:32 PM, Ralf Hildebrandt wrote:

1358927965.305  90252 141.42.xxx.69 TCP_MISS/200 2711 CONNECT 
download.teamviewer.com:443 - HIER_DIRECT/46.163.100.220 -
1358928992.439     74 141.42.xxx.115 TCP_MISS/200 9 CONNECT 
ping3.teamviewer.com:443 - HIER_DIRECT/95.211.37.197 -
Idea:


acl teamviewer-ssl url_regex ^(master|ping)[0-9]+\.teamviewer\.com
http_access deny teamviewer-ssl


If you want to block teamviewer totally, dstdomain would be faster:

acl teamviewer dstdomain .teamviewer.com
http_access deny teamviewer


OK, I still want be able to access www.teamviewer.com :)

Then use dstdomain + CONECT method deny and allow dstdomain +GET\POST|HEAD METHODS.


Eliezer

Re: [squid-users] Squid 3.2.6 - blocking hosts by regexp?

Reply via email to