Hi

I am using squid 2.6 stable 18 on Fc8. there is problem in this my acl are ,

acl mynet src 192.168.1.0/24

acl msnads dstdom_regex -i .icq.com
acl msnads dstdom_regex -i .telepk.com
acl msnads dstdom_regex -i .stealthsettings.com
acl msnads dstdom_regex -i .studentscafe.com
acl msnads dstdom_regex -i .stealthsettings.com
acl msnads dstdom_regex -i .neomessenger.com


http_access deny msnads
http_access allow mynet


it works fine if a user browse using "http://www.icq.com" he get deny page of squid. if he types "http://icq.com" he is able to browse this.
whereas it shouldn't be.

there is alternate url_regex but there are some address that contain a word e.g whoicqme so it also block required or business websites.

Any idea for this .

thanks

When using a regex, I just put in the main part and leave out the .net, .com or whatever. You can also combine them into one acl...
Two things I do to make squid life easier.

1. I trim down the squid.conf with a backup so it's readable.
sed -i.bak '/^$/d; /^#/d' /etc/squid/squid.conf

2. I use webmin to tweak the squid settings whenever possible.

because you're using "acl msnads dstdom_regex -i .icq.com" notice you used .icq.com that's why you were able to pass using http://icq.com and denied when using http://www.icq.com.

It would be better if you'd place all these urls to a file and use acl url_regex