Squid ACL based on protocol AND host?

12-10-2003, 09:58 AM

Is there any way to create Squid ACLs that allow/deny FTP
connections to a list of hosts?

I am looking for something like this:

acl ftp proto FTP
acl safehosts dstdomain "/some/file"
http_access allow ftp && safehosts

-Ramon

12-11-2003, 01:16 AM

(E-Mail Removed) (Ramon F Herrera) writes:

> Is there any way to create Squid ACLs that allow/deny FTP
> connections to a list of hosts?
>
> I am looking for something like this:
>
> acl ftp proto FTP
> acl safehosts dstdomain "/some/file"
> http_access allow ftp && safehosts

You're so close....

http_access allow ftp safehosts

If you don't already have a rule that would deny FTP connections
to everywhere else, then add this after the above line:

http_access deny ftp

--
Michael Fuhr
http://www.fuhr.org/~mfuhr/

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
name based virtual host	query.cdac@gmail.com	Linux Networking	2	04-18-2007 12:04 PM
configuring name based virtaul host	query.cdac@gmail.com	Linux Networking	1	04-17-2007 11:42 AM
using squid to limit bandwidth based on domain	cwhite@theatomicmoose.ca	Linux Networking	4	12-21-2006 05:38 PM
Web based Squid	Richard Lam	Linux Networking	3	08-08-2006 01:47 PM
Squid forms based authentication.	Max	Linux Networking	0	07-24-2004 01:49 PM