On 01/20/10 21:24, Adam wrote:
On 01/20/10 16:53, Joseph wrote:
I'm testing squid and want to allow only one domain but it is not
working (using iptable + squid)
iptable:
ACCEPT tcp -- anywhere anywhere tcp
dpt:http owner UID match squid
ACCEPT tcp -- anywhere anywhere tcp
dpt:3128 owner UID match squid
REDIRECT tcp -- anywhere anywhere tcp
dpt:http redir ports 3128
Using "owner" is incorrect, as the packets are not locally generated so
the OS has no user context for them.
In a squid log I get:
1263964263.464 0 192.168.1.5 NONE/400 1828 GET / - NONE/- text/html
All I have access is to localhost:361 anything else local is denied including
www
What should I use instead of owner?
I was following this guide:
http://www.linux.com/archive/articles/113733
It worked with dansguardian in between but I was trying to by-pass the
dansguardian as I only need to allow access to one or two web-pages.
--
Joseph
