LinuxQuestions.org - Squid with port manager

- Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)

- - Squid with port manager (https://www.linuxquestions.org/questions/linux-networking-3/squid-with-port-manager-482580/)

Squid with port manager

Can we use the squid for authorizing the ports based on user authentication.

By default squid only authorize http/ftp/https ports depending upon user login/passwd. Can you manange different ports based on user login authentication.

Thanks
Nadeem, San Jose

Hi there...

The answer is yes, you can... You'll have to define acl's for both the ports you want to authorize and users who will be allowed such ports and then combine them both on one 'http_access' line.

Cheers

Well...

What you want would require, at least, the creation of 3 ACL's. One would make it mandatory for a user to authenticate:

"acl password proxy_auth REQUIRED"

The other would define a group or class of users which will be allowed to access to some specific ports:

"acl good_guys proxy_auth username1 username2 etc"

The third will the set of ports you want to give access to:

"acl nice_port port 6666 7777 8888"

After that, you define an http_access line that will combine those 3 ACL's:

"http_access allow password good_guys nice_port"

This line means: "Allow access throught this proxy, to the ports specified in the nice_port ACL, to all the authenticated users who are part of the good_guys ACL".
Any other users, although authenticated, would not be allowed to connect to those example ports...

Hope that helps...

Cheers