|
Home > Archive > Squid > April 2004 > [squid-users] Some ACL seems not be read
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
[squid-users] Some ACL seems not be read
|
|
| Cavicchini Paolo 2004-04-29, 6:54 pm |
| Hello,
I've just installed Squid 2.5 Stable on Windows 2000 Server.
I need to deploy some web filtering rule, so I've compiled some file
with a lot of forbidden URLs and I've write this ACLs:
=20
acl URL_PORN url_regex "D:\squid\etc\porn.txt"
acl URL_PORN1 url_regex "D:\squid\etc\porn1.txt"
acl URL_AUDIO url_regex "D:\squid\etc\audio.txt"
acl URL_MAGAZINES url_regex "D:\squid\etc\magazines.txt"
acl URL_GAMES url_regex "D:\squid\etc\games.txt"
acl URL_OTHER url_regex "D:\squid\etc\other.txt"
acl URL_CALLCENTER url_regex "D:\squid\etc\callcenter.txt"
=20
http_access allow CALLCENTER !URL_PORN !URL_PORN1 !URL_AUDIO !URL_GAMES
!URL_OTHER !URL_CALLCENTER
http_access allow BUYERS !URL_PORN !URL_PORN1 !URL_AUDIO !URL_GAMES
!URL_MAGAZINES !URL_OTHER
http_access allow WAREHOUSE !URL_PORN !URL_PORN1 !URL_AUDIO !URL_GAMES
!URL_MAGAZINES !URL_OTHER
http_access allow GUESTS !URL_PORN !URL_PORN1 !URL_AUDIO !URL_GAMES
!URL_MAGAZINES !URL_OTHER
http_access allow DEVELOPERS !URL_PORN !URL_PORN1 !URL_AUDIO !URL_GAMES
!URL_OTHER
=20
I experience a strange thing: some URL wrote in some file doesn't seem
read.
e.g. the content of "D:\squid\etc\callcenter.txt" isn't read and Squid
don't block the request.
Other files are read correctly.
=20
I've reload the SquidNT service, but nothing change.
=20
Has anyone a solution to suggest me?
=20
Thank you in advance
Paolo
=20
Questo messaggio di posta elettronica contiene informazioni di carattere =
confidenziale rivolte esclusivamente al destinatario sopra indicato.
E' vietato l'uso, la diffusione, distribuzione o riproduzione da parte =
di ogni altra persona.=20
Nel caso aveste ricevuto questo messaggio di posta elettronica per =
errore, siete pregati di segnalarlo immediatamente al mittentee =
distruggere quanto ricevuto (compresi file allegati) senza farne copia.
Qualsivoglia utilizzo non autorizzato del contenuto di questo messaggio =
costituisce violazione dell'obbligo di non prendere cognizione della =
corrispondenza tra gli altri soggetti, salvo piu grave illecito, ed =
espone il responsabile alle relative conseguenze.
=09
Confidentiality Notice. This electronic mail transmission may contain =
legally priviledge and/or confidential information. Do not read this if =
you are not the person(s) named.
Any use, distribution, copying or disclosure by any other person is =
stricly prohibited.
If you received this trasmission in error, please notify the sender and =
destroy the original transmission and its attachments without reading or =
saving in any manner.
Questo messaggio di posta elettronica contiene informazioni di carattere =
confidenziale rivolte esclusivamente al destinatario sopra indicato.
E' vietato l'uso, la diffusione, distribuzione o riproduzione da parte =
di ogni altra persona.=20
Nel caso aveste ricevuto questo messaggio di posta elettronica per =
errore, siete pregati di segnalarlo immediatamente al mittentee =
distruggere quanto ricevuto (compresi file allegati) senza farne copia.
Qualsivoglia utilizzo non autorizzato del contenuto di questo messaggio =
costituisce violazione dell'obbligo di non prendere cognizione della =
corrispondenza tra gli altri soggetti, salvo piu grave illecito, ed =
espone il responsabile alle relative conseguenze.
=09
Confidentiality Notice. This electronic mail transmission may contain =
legally priviledge and/or confidential information. Do not read this if =
you are not the person(s) named.
Any use, distribution, copying or disclosure by any other person is =
stricly prohibited.
If you received this trasmission in error, please notify the sender and =
destroy the original transmission and its attachments without reading or =
saving in any manner.
| |
| Henrik Nordstrom 2004-04-29, 6:54 pm |
| On Tue, 27 Apr 2004, Cavicchini Paolo wrote:
> I experience a strange thing: some URL wrote in some file doesn't seem
> read.
> e.g. the content of "D:\squid\etc\callcenter.txt" isn't read and Squid
> don't block the request.
Does "squid -f \path\to\squid.conf -k parse" report anything?
What does the content of callcenter.txt look like? I notice you seem to be
using url_regex a lot, and just want to make sure you know how regex
works.. in most situations url_regex is the last type of acl one should
use only if there is no other acl doing the job.
You can also try using / instead of \ in the path to the file.
Regards
Henrik
| |
| Serassio Guido 2004-04-29, 6:54 pm |
| Hi,
At 12.07 27/04/2004, Cavicchini Paolo wrote:
>Hello,
>I've just installed Squid 2.5 Stable on Windows 2000 Server.
>.....
>I experience a strange thing: some URL wrote in some file doesn't seem
>read.
>e.g. the content of "D:\squid\etc\callcenter.txt" isn't read and Squid
>don't block the request.
>Other files are read correctly.
>
First: as You can read on SquidNT documentation, use "/" char in file paths
instead of "\" char.
Second: check the text file format: SquidNT expects for configuration file
DOS text format (CR+LF).
Regards
Guido
-
========================================
================
Guido Serassio
Acme Consulting S.r.l.
Via Gorizia, 69 10136 - Torino - ITALY
Tel. : +39.011.3249426 Fax. : +39.011.3293665
Email: guido.serassio@acmeconsulting.it
WWW: http://www.acmeconsulting.it/
|
|
|
|
|