Pessoal, tomei coragem e migrei meu squid 2.4 para 2.5 consegui fazer ele autenticar belezinha. s� que agora, ele n�o est� barrando as url's priibidas para meus usu�rios. segue parte do meu squid.conf dominio s�o todos os usu�rios da minha rede que tem que ser barrados restrito s�o aqueles que n�o passam pelo filtro. acl dominio proxy_auth REQUIRED acl restrito proxy_auth "/etc/squid/restritos" acl regraconteudo urlpath_regex "/etc/squid/regra_de_conteudo" acl regrapalavra urlpath_regex "/etc/squid/regra_de_palavra" acl regraurl dstdomain "/etc/squid/regra_de_url" acl porno dstdomain "/etc/squid/porno"
# TAG: http_access # Allowing or Denying access based on defined access lists # # Access to the HTTP port: # http_access allow|deny [!]aclname ... # # NOTE on default values: # # If there are no "access" lines present, the default is to deny # the request. # # If none of the "access" lines cause a match, the default is the # opposite of the last line in the list. If the last line was # deny, then the default is allow. Conversely, if the last line # is allow, the default will be deny. For these reasons, it is a # good idea to have an "deny all" or "allow all" entry at the end # of your access lists to avoid potential confusion. # #Default: # http_access deny all # #Recommended minimum configuration: # # Only allow cachemgr access from localhost http_access allow manager localhost http_access deny manager # Deny requests to unknown ports http_access deny !Safe_ports # Deny CONNECT to other than SSL ports http_access deny CONNECT !SSL_ports # # We strongly recommend to uncomment the following to protect innocent # web applications running on the proxy server who think that the only # one who can access services on "localhost" is a local user #http_access deny to_localhost # # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS # Exampe rule allowing access from your local networks. Adapt # to list your (internal) IP networks from where browsing should # be allowed #acl our_networks src 192.168.1.0/24 192.168.2.0/24 #http_access allow our_networks # And finally deny all other access to this proxy http_access allow localhost #acl para libera��o de usuarios http_access allow dominio http_access allow restrito # Controle das paginas proibidas http_access allow liberado all http_access allow restrito regrapalavra http_access allow restrito regraconteudo http_access allow restrito regraurl http_access allow restrito porno http_access deny regrapalavra all http_access deny regraconteudo all http_access deny regraurl all http_access deny porno all http_access deny all "onde existe amor, n�o existe o imposs�vel..." ------ Gabriel D'Asti Ventura Vicalvi [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] (msn messenger) [EMAIL PROTECTED] (yahoo! Messenger) icq #33040301 tel (55+11)3951-6235/9406-0252/3858-6859 --------------------------------------------------------------------------- Esta lista � patrocinada pela Conectiva S.A. Visite http://www.conectiva.com.br Arquivo: http://bazar2.conectiva.com.br/mailman/listinfo/linux-br Regras de utiliza��o da lista: http://linux-br.conectiva.com.br FAQ: http://www.zago.eti.br/menu.html
