Gentoo Archives: gentoo-user

From: Adam <adam@××××××××××.au>
To: gentoo-user@l.g.o
Subject: Re: [gentoo-user] squid - allowing only one domain
Date: Wed, 20 Jan 2010 10:13:04
Message-Id: 4B56D81F.9010504@jaftan.com.au
In Reply to: [gentoo-user] squid - allowing only one domain by Joseph
1 On 01/20/10 16:53, Joseph wrote:
2 > I'm testing squid and want to allow only one domain but it is not
3 > working (using iptable + squid)
4 > iptable:
5 > ACCEPT tcp -- anywhere anywhere tcp
6 > dpt:http owner UID match squid
7 > ACCEPT tcp -- anywhere anywhere tcp
8 > dpt:3128 owner UID match squid
9 > REDIRECT tcp -- anywhere anywhere tcp
10 > dpt:http redir ports 3128
11 >
12 > squid:
13 > # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
14 >
15 > acl GOOD dstdomain .google.ca
16 > http_access allow GOOD
17 > http_access deny all
18 >
19 > Why it doesn't work?
20
21 You havent said how its failing; ie
22 1. Its not intercepting the traffic
23 2. It is intercepting but doesnt allow acces to google.ca
24 3. It is intercepting but allows access to everything