Hi,
I have a solution:
acl custom-auth proxy_auth REQUIRED
acl mysite dstdomain .zickswebventures.com
acl blocklistA dstdomain .facebook.com .youtube.com
acl blocklistB dstdomain .youtube.com
acl portA myport 8100
acl portB myport 8101
acl portC myport 8102
acl portJ myport 8109
http_access deny blocklistA portA
http_access deny blocklistB portB
url_rewrite_access allow portA
url_rewrite_access allow portB
url_rewrite_access allow portC
url_rewrite_program /bin/squidGuard -c /etc/squid/squidGuard.conf
url_rewrite_children 3
http_access allow mysite
http_access allow custom-auth all
http_access deny all
I copied in the same page as I have squidGuard redirect to
ERR_ACCESS_DENIED, but is there a way to remove where it says "Generated
Tue, 23 Feb 2010 17:21:36 GMT by ..." so it will look the same regardless
of how it was blocked?
Also, what is this going to do to performance on a heavily loaded served
and is there a smarter way to do this?
Best Regards,
Al
On Mon, 15 Feb 2010, linuxlo...@gmail.com wrote:
Date: Mon, 15 Feb 2010 01:45:09 +0000
From: linuxlo...@gmail.com
To: Al - Image Hosting Services <az...@zickswebventures.com>,
squid-users@squid-cache.org
Subject: Re: [squid-users] setting up different filtering based on port number
Need to know a bit more about the origins of the user requests.
Sounds like a good candidate for external helper, a pre-screening of the
inbound to proxy request to determine which proxy port - thereby ACL's - to
direct to.
Perhaps a primary proxy port 8082 which would do such decision making, with reverse proxy
mappings to you 8080 and 8081 ports, so it would be seamless to the end user and that way
you have a single "master" proxy service for all users.
------Original Message------
From: Al - Image Hosting Services
To: squid-users@squid-cache.org
Subject: [squid-users] setting up different filtering based on port number
Sent: Feb 14, 2010 6:21 PM
Hi,
I know that this is a little bit off topic for this list, but I asked on
the squidguard list and they said that I need to run 2 instances of squid.
I know that squid can listen on 2 ports very easily, and I have setup
squid to listen on 2 different ports. Port 8080 uses squidguard to filter,
but port 8081 doesn't. What I would really like to be able to do is to
have less restrictive filtering on port 8081. For example, I would like to
block youtube on port 8080, but not on port 8081. Still I would like to be
able to block porn on port 8081. Could someone give me some assistance on
how to do this or point me to a how to?
Best Regards,
Al
Sent via BlackBerry by AT&T
