If Squid reads your http_access list, the first one who apply is the rule that matter. You can safely delete the BAD acl because the ALL acl has the some function. So try this:
acl all src 0.0.0.0/0.0.0.0 acl GOOD dst 10.117.0.0/255.255.0.0 http_access allow good http_access deny all ----- Original Message ----- From: "Devon Harding - GTHLA" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, January 30, 2003 6:36 PM Subject: [squid-users] acl dst not working! > For some reason, my "http_access deny dst" is not working. Its still > proxying out to the world. Here is my config: > > acl all src 0.0.0.0/0.0.0.0 > acl GOOD dst 10.117.0.0/255.255.0.0 > acl BAD dst 0.0.0.0/0.0.0.0 > > http_access allow all > http_access deny BAD > http_access allow GOOD > > Any ideas? > > _____________________ > Devon Harding > System Administrator > Gilat Latin America > 954-858-1600 > [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> > > This e-mail is intended for the above named addressee(s), and may contain > information which is confidential or privileged. If you are not the intended > recipient, please inform us immediately: you should not copy or use this > e-mail for any purpose nor disclose its contents to any person. > >
