It seems to me you would be best served by just adding a line like:
http_reply_access allow SERVER
before the first http_reply_access line. This should allow any replies from
12.34.56.78, irrespective of what kind of file is requested. Then again,
I'm not completely certain of how the http_reply_access lines work.
Chris
-----Original Message-----
From: Boniforti Flavio [mailto:[EMAIL PROTECTED]
Sent: Wednesday, December 15, 2004 3:15 AM
To: [EMAIL PROTECTED]
Subject: [squid-users] Merging http_access and http_reply_access?
Hello all!
I'm actually using this configuration:
acl UtentiAutorizzati proxy_auth REQUIRED
acl our_networks src 10.167.208.0/24 10.167.209.0/24 10.167.210.0/24
10.167.211.0/24 10.167.212.0/24
acl streaming rep_mime_type ^video/x-ms-asf ^video/x-ms-sf ^audio/mpeg
^audio/x-mpeg ^audio/x-pn-realaudio
acl block_stream urlpath_regex
\.(ra?m|mpe?g?|mov|m3u|pls|ivf|asf|asx|avi|wax|wma|wmv|wvx|wmp|wmx|m1v|mp2|m
p3|mpa|mpe|mpv2)($|
\?)
http_access allow CED UtentiAutorizzati
http_access allow our_networks
http_access allow localhost
http_reply_access deny block_stream
http_reply_access deny streaming
http_access deny all
Now, I need to allow our users to access ".rm" files which reside on a
specific web server, which I know by its IP address.
Now, I added:
acl SERVER dst 12.34.56.78
and was trying to figure out how to write the "access" line.
http_access allow SERVER block_stream streaming
doesn't work (I put it before the "http_reply_access" rules).
My question is: is it possible (and if yes, *how*) to merge different
access rules (http_access and http_reply_access)?
Thank you!
--
-----------------------------------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
-----------------------------------
