+ Responder ao Tópico



  1. #1
    bouncer
    Visitante

    Padrão squid nao faz restricao de sites..

    ai manos meu squid esta dano seguinte erro..no servidor ser red hat 9.0
    ja foram criados blacklist, whitelist, dentro /etc/squid
    quando coloco site dentro blacklist ..ele men barra site
    que fazer ..creio que deve estar certo
    acl whitelist url_regex "/etc/squid/whitelist"
    acl blacklist url_regex "/etc/squid/blacklist"
    acl download urlpath_regex .exe$ .zip$ .arj$ .tar.gz$ .tgz$ .rpm$ .mp3$

    http_access deny blacklist
    http_access allow whitelist

    [root@linux squid]# /etc/init.d/squid stop
    Parando o squid: 2004/02/27 20:39:16| strtokFile: /etc/squid/whitelist not found
    2004/02/27 20:39:16| aclParseAclLine: IGNORING invalid ACL: acl whitelist url_regex "/etc/squid/whitelist"
    2004/02/27 20:39:16| squid.conf line 42: http_access allow whitelist
    2004/02/27 20:39:16| aclParseAccessLine: ACL name 'whitelist' not found.
    2004/02/27 20:39:16| squid.conf line 42: http_access allow whitelist
    2004/02/27 20:39:16| aclParseAccessLine: Access line contains no ACL's, skipping
    . [ OK ]
    [root@linux squid]# tail -f /var/log/messages
    Feb 27 20:30:19 linux squid[1703]: Squid Parent: child process 1705 exited with status 0
    Feb 27 20:31:21 linux squid[1788]: Squid Parent: child process 1790 started
    Feb 27 20:31:45 linux squid[1788]: Squid Parent: child process 1790 exited with status 0
    Feb 27 20:32:10 linux squid[1857]: Squid Parent: child process 1859 started
    Feb 27 20:33:35 linux squid[1857]: Squid Parent: child process 1859 exited with status 0
    Feb 27 20:33:39 linux squid[1915]: Squid Parent: child process 1917 started
    Feb 27 20:37:10 linux squid[1915]: Squid Parent: child process 1917 exited with status 0
    Feb 27 20:37:15 linux squid[1967]: Squid Parent: child process 1969 started
    Feb 27 20:39:16 linux squid[1967]: Squid Parent: child process 1969 exited with status 0
    Feb 27 20:39:37 linux squid[2019]: Squid Parent: child process 2021 started

  2. #2

    Padrão Cara...

    se não me engano vc tem que liberar primeiro e bloquear depois, primeiro vem o allow e depois o deny, vc tem tb que fazer o NAT redirecionando para o tráfego da porta 80 para a 3128, e configurar os clientes para acessarem via proxu pela 3128.

    []'s, Jim.