Re: [squid-users] acl public ip and auth

From: Henrik Nordstrom <henrik@dont-contact.us>
Date: Wed, 15 Mar 2006 11:16:34 +0100

tor 2006-03-09 klockan 08:57 +0100 skrev Žiga Dolher:
> Have you maybe any example of the config, because I don't know how to do it?

You need two instances of Squid. Each instance of Squid needs it's own

  - squid.conf
  - http_port
  - icp_port (unless disabled)
  - snmp_port (if enabled)
  - htcp_port (if enabled)
  - pid_file_name
  - cache_access_log
  - cache_store_log (unless disabled)
  - cache_log
  - cache_dir (one should use the null cache_dir to disable caching..)
  - unique_hostname (or visible_hostname)

Then in the first Squid use

  cache_peer localhost parent port.of.dansguardian 0 no-query
  never_direct allow all

Tell dansguardian to connect to the http_port of the second Squid.

Second Squid access controls is simply

  http_access allow localhost
  http_access deny all

only allowing access from dansguardian on the server itself.

Regards
Henrik

Received on Wed Mar 15 2006 - 03:16:42 MST

This archive was generated by hypermail pre-2.1.9 : Sat Apr 01 2006 - 12:00:04 MST