Here is short configuration of "squid.conf" file:
Quote:
#----deny download----
acl bad_file url_regex -i "/etc/squid/.badfile"
acl download method GET
#
http_access deny bad_file download
http_access deny bad_file
#
##########
acl localnet src 192.168.1.1-192.168.1.100/255.255.255.0
acl localhost src 127.0.0.1/255.255.255.255
acl Safe_ports port 20 21 70 80 110 210 443 8443
acl CONNECT method CONNECT
acl all src 0.0.0.0/0.0.0.0
######
http_access allow localnet
http_access deny !Safe_ports
http_access deny CONNECT
http_access deny all
#
|
I have two problem with it:
- How can i disable access list " bad_file " after working hours, it means all users in my local network can download with all file types? The working hours is 8:15a.m --- 19:15p.m
- In above access list, i only allow IP range from 192.168.1.1 --to-- 192.168.1.100 can access Internet, however others IP address outsite this range still pass my Squid proxy go Internet. How can i fix this, and allow only specify IP range?
Please help me solve the problems. Thank you very much.