On 01/20/10 16:53, Joseph wrote: > I'm testing squid and want to allow only one domain but it is not > working (using iptable + squid) > iptable: > ACCEPT tcp -- anywhere anywhere tcp > dpt:http owner UID match squid > ACCEPT tcp -- anywhere anywhere tcp > dpt:3128 owner UID match squid > REDIRECT tcp -- anywhere anywhere tcp > dpt:http redir ports 3128 > > squid: > # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS > > acl GOOD dstdomain .google.ca > http_access allow GOOD > http_access deny all > > Why it doesn't work?
You havent said how its failing; ie 1. Its not intercepting the traffic 2. It is intercepting but doesnt allow acces to google.ca 3. It is intercepting but allows access to everything
