CF wrote: > On Thu, 2003-10-30 at 02:26, Reinfried O. PETER wrote: >> I have several source group declarations, destination group >> declarations, rewrite rule group declarations and access control >> rule declarations and everything looked good, but now I added >> for a new source group a very limited new destination group >> of allowd URLs and what I see is, that it doesn't block URLs >> that are redirected by the originating server, for example: >> >> It does block http://www.microsoft.com/ (that's what I want) >> but it doesn't block http://www.sun.com/ because of Sun's >> homepage is redirected to http://www.sun.com/index.xml >> >> Any idea what's wrong? > > Strange. If you've blocked sun.com then anything.sun.com/anythingelse > should be blocked. > > Please post your squidGuard.conf to the list. > >
I didn't block sun.com - what I want to do is to allow a very
small range of domains (not URLs, sorry for that) of Austrian
universities for an open WLAN and to block all others, so my
squidGuard.conf looks like this:
src wlan {
ip 172.27.0.0/255.255.0.0
}
...
dest unis {
domainlist unis/domains
redirect ...
}
...
acl {
wlan {
pass unis !good !bad !chat !adult !any
redirect ...
}
...
}
where good, bad, chat and adult are the other lists that we use.
This works for all URLs, that do not redirect but doesn't work
for URLs with redirection (see first mail)
Regards
-pro-
smime.p7s
Description: S/MIME Cryptographic Signature
