deny domain with squid

**l4e** · 01-22-2007

Hi All.

I'm using RHEL4 Update3 and using squid-2.5.STABLE6-3.4E.12.
I want to deny some domains that stored in blacklist file ( located in /etc/squid/ ).
But i can't.

look at my configuration file:

http_port 3128
visible_hostname server

# Cache Section
maximum_object_size 1024 MB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /var/spool/squid 2048 16 256
cache_access_log /var/log/squid/access.log
refresh_pattern ^ftp: 15 20% 2280
refresh_pattern ^gopher: 15 0% 2280
refresh_pattern . 15 20% 2280

# Access Control List
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl localnetwork src 192.168.1.0/24

# Internet Bandweth, 128 KB/S for every pc.
delay_pools 1
delay_class 1 2
delay_parameters 1 32768/32768 16384/16384
delay_access 1 allow localnetwork
http_access allow localhost
http_access allow localnetwork
http_access deny all

# Black List
acl blacklist url_regex -i "/etc/squid/blacklist"
http_access deny blacklist

http_access allow localhost
http_access allow localnetwork
http_access deny all

can u help me.

**k_amisi** · 01-22-2007

The way i see it try muting out the delay pool(http_access) configuration, because i see that you have a couple of redundant rules.

Structure the blacklist acl in way that the http_deny rules do not override it.

acl blacklist url_regex -i "/etc/squid/blacklist"
http_access deny blacklist
http_access allow localhost, localnetwork
http_access deny all

**l4e** · 01-22-2007

than u very very much.

you are solved my problem.

**k_amisi** · 01-22-2007

No problem.

Thread Tools

Display

deny domain with squid

Posting Permissions