I'd like Squid to be configured to allow all traffic except for a list of ad servers, but it doesn't seem to be working... I have the following line in Squid:
acl ads dstdom_regex -i "/etc/squid/adservers" http_access deny ads The adservers file then contains regex expressions for various ad servers, etc. This Squid process is only listening on localhost as it gets the request from DansGuardian in front of it. Here's my acl lines: acl QUERY urlpath_regex cgi-bin \? acl QUERY urlpath_regex download acl QUERY urlpath_regex exe acl QUERY urlpath_regex zip acl QUERY urlpath_regex 160 acl ads dstdom_regex -i "/etc/squid/adservers" acl all src 0.0.0.0/0.0.0.0 acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl to_localhost dst 127.0.0.0/8 acl SSL_ports port 443 563 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT acl PURGE method PURGE And here's my http_access lines: http_access deny ads http_access allow PURGE localhost http_access allow all http_access allow manager localhost http_access deny manager http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access allow localhost Any ideas what I'm missing? Thanks, ~M -- Get Firefox! http://www.mozilla.org/products/firefox/
