I tried "existing_users" still get same "403 Access Denied" when attempting to surf.
Here is updated Config:
Code:
# WELCOME TO SQUID 3.1.20
# ----------------------------
#Recommended minimum configuration:
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 172.16.1.0/25
acl staff src 172.16.1.128/26
acl admin src 172.16.1.192/26
# Ports
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow manager
http_access allow localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny to_localhost
icp_access deny all
htcp_access deny all
http_port 8888 transparent
visible_hostname fae.sonorajoes.com
#Suggested default:
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
acl whitelist dstdomain "/etc/squid3/whitelist.txt"
# Splash page
external_acl_type splash_page ttl=60 concurrency=100 %SRC /usr/lib/squid3/squid_session -t 7200 -b /var/lib/squid/session.db
acl existing_users external splash_page
deny_info http://fae.sonorajoes.com/splash.php?url=%s existing_users
# Allow localnet machines to whitelisted sites
http_access allow whitelist
http_access deny localnet !existing_users
http_access allow staff
http_access allow admin
# block all other access
http_access deny all
# Cache
cache_mem 512 MB
cache_effective_user proxy
cache_effective_group proxy
# SquidGuard
redirect_program /usr/bin/squidGuard -c /etc/squidguard/squidGuard.conf
Here are /var/log/squid3/access.log
Code:
1419902793.976 2 172.16.1.54 TCP_DENIED/403 3855 GET http://purple.com/ - NONE/- text/html
1419902794.885 0 172.16.1.54 TCP_DENIED/403 3801 GET http://purple.com/favicon.ico - NONE/- text/html
1419902810.518 0 172.16.1.54 TCP_DENIED/403 3855 GET http://purple.com/ - NONE/- text/html
1419902810.688 0 172.16.1.54 TCP_DENIED/403 3801 GET http://purple.com/favicon.ico - NONE/- text/html
Not sure what to try from here.