thanks! > > But you should also set up proper access controls in http_access limiting > to which destinations the proxy will allow requests. If not it can easily > be abused to reach other sites.. >
right. I've been reading and testing for that. > An alternative method is to tell Squid about each web server using > cache_peer, control which requests gets sent where with cache_peer_access > and force Squid to use the peers via never_direct. This gives you better > control over how Squid distributes the load on the web servers, for > example if you have multiple backend servers for the same content. only thing about that is the backend origin servers all have unique content. no images/html on one machine are on any other. would that alternative method still work on that case ?
