Johan de Vries wrote:
>
> What I want to do with squidGuard is to give certain groups of users
> access to selected sites on the internet
>
> For example the pc in the warehouse has only access to the site
> fedex.com
>
> However with the config below the host 10.0.18.6 can access all pages
> instead of only the ones in alloweddomains
>
> How can I put this together ?
Try the test with one change to the config: add "none" at the end of
the testdest acl (making it "pass testdest none"). I think you'll
find that will limit access to only those sites listed in testdest.
You can use more meaningful labels when you create your production
configuration; that will make it easier to read and understand. For
example, you might have:
Sources:
warehouse
sales
management
Destinations:
ok-warehouse
ok-sales
porn
gambling
drugs
Then your acls might be:
warehouse: pass ok-warehouse none
sales: pass ok-sales none
management: pass !porn !gambling !drugs all
default: pass none
That should give you had idea of some possibilities. Let us know
if you have any questions about setting it up.
Rick
>
> # ## Simple squidGuard.conf test file ##
>
> logdir /usr/local/squidGuard/log
> dbhome /usr/local/squidGuard/db
>
> src testsource {
> ip 10.0.18.6
> }
>
> dest testdest {
> domainlist alloweddomains
> redirect http://tinyurl.com/2zdr5
> log blocked.log
> }
>
> acl {
> testsource {
> pass testdest
> }
>
> default {
> pass none
> redirect http://tinyurl.com/2m5v5
> log blocked.log
> }
> }
>
> # ## End of Simple squidGuard.conf test file ##
>
