Amos Jeffries wrote:
> Hermidio A. Rodriguez Chavez wrote:
>> Hi all, i need to control the access to my proxy checking first if
>> the computer has:
>>
>> 1- FQDN
>> 2- IP-address(of course in my checklist file)
>> 3- reverse PTR record.
>>
>> It's posible?
>
> Not without patching.
> Squid only does domain->IP (dst ACL)
>
> and IP->rDNS (dstdomain ACL if raw-IP was given).
>
> not the combo sequence. Reverse-DNS is very rarely correct anyway.
>
> Consider virtual-hosting and content delivery networks where One
> single IP has up to thousands of domains. There is zero chance of all
> those having rDNS correct.
This assumes the determination is made based on the destination. If the
determination is made based on the source (requester), then an
external_acl_type would be workable.
> Amos
Chris
Received on Wed Sep 02 2009 - 19:40:01 MDT
This archive was generated by hypermail 2.2.0 : Thu Sep 03 2009 - 12:00:02 MDT