LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 07-28-2004, 01:00 AM   #1
gubak
Member
 
Registered: Jul 2004
Posts: 332

Rep: Reputation: 30
Squid


I have a LAN which connects to the internet through a RedHat9 machine. I use squid for this. I've just installed squid and I've started it with default configuration. How can I restrict a particular users not to use internet?

Last edited by gubak; 10-23-2006 at 06:20 AM.
 
Old 08-14-2004, 01:52 AM   #2
zatriz
Member
 
Registered: Aug 2003
Location: Seattle, Wa
Distribution: Fedora,Trustix,Debian
Posts: 290

Rep: Reputation: 30
I believe you can do it in anyone one of these four ways.

1. if you do it by ip address you can just block traffic from that ip
2. you can setup authenication for everyone, and just block that user.
3. you can setup squidguard and do ip based filtering.
4. setup squid acls

Last edited by zatriz; 08-14-2004 at 02:00 AM.
 
Old 08-14-2004, 02:59 AM   #3
redhatuser
LQ Newbie
 
Registered: Aug 2004
Posts: 6

Rep: Reputation: 0
could you give us the procedure. how to restrict on squid?
 
Old 08-14-2004, 03:14 AM   #4
zatriz
Member
 
Registered: Aug 2003
Location: Seattle, Wa
Distribution: Fedora,Trustix,Debian
Posts: 290

Rep: Reputation: 30
I'm assuming that you already have a basic squid setup going already. If not then you need to make sure that squid is installed and working before you proceed.
the configuration file should be at /etc/squid/squid.conf
it may differ for you depending on your distribution.

When you installed squid, part of the configuration had you define an acl for your internal network kind of of like this line
acl our_networks src 192.168.1.0/24

and then you allow the that network by doing something like this
http_access allow our_networks

our_networks is just an example yours could be called anything.


well just after the
"acl our_networks src 192.168.1.0/24" line
put another line that goes like this
"acl deny_list src 192.168.0.55/24 "
replace the ip address with what ever you are trying to block and then just
add a line directly after it like this "http_access deny deny_list
make sure to put the http_access deny deny_list line before the other http_access statements that are defined.



save the squid.conf file then restart squid.

Last edited by zatriz; 08-14-2004 at 03:19 AM.
 
Old 08-14-2004, 10:07 AM   #5
ppuru
Senior Member
 
Registered: Mar 2003
Location: Beautiful BC
Distribution: RedHat & clones, Slackware, SuSE, OpenBSD
Posts: 1,791

Rep: Reputation: 50
Hi gubak

Here is a good starting point.
http://www.linuxfocus.org/English/Ma...ticle235.shtml

Were you succesful with the ncsa_auth part?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
SQUID for blocking yahoo and msn [inc squid.conf] chrisfirestar Linux - Security 10 03-03-2008 08:33 AM
squid message customization, hiding squid versioin rajnishmishra Linux - Networking 0 11-27-2004 03:55 AM
squid conf: squid failed when I type insert redirect_program /usr/bin/squidguard Niceman2005 Linux - Software 1 11-24-2004 02:29 PM
I can't "service squid start" , and chkconfig squid on not working Niceman2005 Linux - Software 0 11-10-2004 08:18 PM
Squid load testing software / Squid optimisation? gundelgauk Linux - Networking 2 08-31-2004 07:36 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 01:37 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration