nixCraft

squid help please.
i've two networks. On one network i want to allow only particular sites.
On 2nd network i want to allow all sites. how do i do that? Only need help with acls order. Thanks


will this work

#Recommended minimum configuration:
acl geek scr 172.16.1.1
acl smokers src 192.168.0.0/24
acl walled_class src 172.16.0.0/24
acl allowedSites url_regex -i "/etc/squid/allowedsites" # define allowed
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT








# And finally deny all other access to this proxy
http_access allow geek
http_access allow smokers # allow all to smokers
http_access allow walled_class allowedsites # allow only
http_access deny walled_class !allowedsites # deny everything other than allowed sites
http_access allow localhost
http_access deny all

acl List1 url_regex cooking
acl list2 url_regex recipe
acl newclients src 172.16.5.0/24
acl oldclients src 192.168.1.0/24
http_access deny List1 newclients
http_access deny List2 oldclients
http_access allow newclients
http_access allow oldclients
http_access deny all

Try this and send me the feedback