Obviously, this is a rather simple example. Here, anyone not in the privileged
group can go to the google homepage, but that's it. Where I'm actually using
it, it goes to a local web server that serves up a page which says "Quit
trying to goof off and get back to work."
--start config--
dbhome /home/test/db
logdir /var/log/squidGuard
src privileged {
ip 192.168.1.100 192.168.1.1 # ONE OF single clients
ip 192.168.1.96
}
acl {
privileged {
pass all
}
default {
pass none
redirect http://www.google.com
}
}
--end config--
On Tuesday 14 December 2004 09:05, Joseph Finley wrote:
> robert wrote:
> > Yes, but are the pass none sections the default? That is the problem. I
> > should have been more clear. Without a redirect in the default section,
> > it doesn't work. I got burned by this when I first started playing with
> > squid guard.
> >
> > On Monday 13 December 2004 19:40, C. Falconer wrote:
> >>Don't think that's his problem... I have several "pass none" sections and
> >>they work fine.
> >>
> >>-----Original Message-----
> >>From: [EMAIL PROTECTED]
> >>[mailto:[EMAIL PROTECTED] On Behalf Of robert
> >>Sent: Tuesday, 14 December 2004 12:49 p.m.
> >>To: Joseph Finley
> >>Cc: [EMAIL PROTECTED]
> >>Subject: Re: Why does this not work?
> >>
> >>
> >>You need a redirect in the pass none section. Without a redirect
> >> statement, it
> >>doesn't work.
> >>
> >>On Monday 13 December 2004 15:18, Joseph Finley wrote:
> >>>My PC is 192.168.207.86 and it's configured in FireFox for Proxy. It
> >>>not only allows me, but every other PC. I've combed the site and
> >>>Googled with no results or examples that work. Help!?
> >>>
> >>>
> >>>------------------------------------------------------------------------
> >>>-- -
> >>>
> >>># squid.conf
> >>>redirect_program /usr/local/squidGuard/squidguard.sh
> >>>redirect_children 5
> >>>
> >>>------------------------------------------------------------------------
> >>>-- -
> >>>
> >>>[EMAIL PROTECTED] squidGuard]# cat squidguard.sh
> >>>#! /bin/sh -
> >>>exec /usr/local/bin/squidGuard -c
> >>>/usr/local/squidGuard/squidGuard.conf
> >>>[EMAIL PROTECTED] squidGuard]#
> >>>
> >>>
> >>>------------------------------------------------------------------------
> >>>-- -
> >>>
> >>>[EMAIL PROTECTED] squidGuard]# cat squidGuard.conf
> >>>logdir /usr/local/squidGuard/log
> >>>dbhome /usr/local/squidGuard/db
> >>>#
> >>>#
> >>>#
> >>>src privileged {
> >>> ip 192.168.207.86
> >>> }
> >>>
> >>>acl {
> >>> privileged {
> >>> pass all
> >>> }
> >>> default {
> >>> pass none
> >>> }
> >>> }
> >>>
> >>>[EMAIL PROTECTED] squidGuard]#
>
> Can you provide an example of what you mean? My default says to "pass
> none". I took that exaple from someone on the list. Copy/paste even.
--
Fail to learn history-repeat it.
Fail to learn rights-lose them.
Learn both-get screwed by previous two groups.
Public key is at http://home.swbell.net/berzerke/robert.key
Fingerprint: 0D70 9ADF B5A7 45E7 A853 4B1C 8E0F 4324 C39D 44A2
