1 |
On 01/20/10 16:53, Joseph wrote: |
2 |
> I'm testing squid and want to allow only one domain but it is not |
3 |
> working (using iptable + squid) |
4 |
> iptable: |
5 |
> ACCEPT tcp -- anywhere anywhere tcp |
6 |
> dpt:http owner UID match squid |
7 |
> ACCEPT tcp -- anywhere anywhere tcp |
8 |
> dpt:3128 owner UID match squid |
9 |
> REDIRECT tcp -- anywhere anywhere tcp |
10 |
> dpt:http redir ports 3128 |
11 |
> |
12 |
> squid: |
13 |
> # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS |
14 |
> |
15 |
> acl GOOD dstdomain .google.ca |
16 |
> http_access allow GOOD |
17 |
> http_access deny all |
18 |
> |
19 |
> Why it doesn't work? |
20 |
|
21 |
You havent said how its failing; ie |
22 |
1. Its not intercepting the traffic |
23 |
2. It is intercepting but doesnt allow acces to google.ca |
24 |
3. It is intercepting but allows access to everything |