LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 05-06-2012, 10:32 PM   #1
4Paul4
Member
 
Registered: Jul 2011
Posts: 51

Rep: Reputation: Disabled
Squid 3.0 Reverse Proxy URL and Source ACL questions.


I have a Squid 3.0 reverse proxy setup to route traffic to 4 different web servers based on HTTP headers.

I've now setup a php file which runs a shell script on a web server. I would like for this one page to only be accessible from 4 specific IP addresses and everything else to be accessible from anywhere.

So www.censored.com/pull-latest-from-github.php can only be accessed from 123.456.789.10 and 111.222.333.444 and 13.37.45.5

I have attached my squid.conf file. Could I have some help setting this up please? Can squid actually do what I want?

Cheers.

Details:

Ubuntu 10.4
Squid 3.0.STABLE26
Extract from /etc/squid3/squid.conf

Code:
visible_hostname censored.com
http_port 80 accel defaultsite=www.censored.com vhost
https_port 443 accel cert=/usr/newrprgate/CertAuth/cert.cert key=/usr/newrprgate/CertAuth/key.pem defaultsite=1.2.3.4 vhost
forwarded_for on

cache_peer api.censored.com parent 443 0 no-query originserver ssl sslversion=3 sslflags=DONT_VERIFY_PEER front-end-https=on name=api
acl sites_api dstdomain api.censored.com
cache_peer_access api allow sites_api
acl https proto https


cache_peer test-api.censored.com parent 443 0 no-query originserver ssl sslversion=3 sslflags=DONT_VERIFY_PEER front-end-https=on name=test-api
acl sites_test-api dstdomain test-api.censored.com
cache_peer_access test-api allow sites_test-api
acl https proto https

cache_peer www.censored.com parent 80 0 no-query originserver name=www
acl sites_www dstdomain www.censored.com
cache_peer_access www allow sites_www
acl http proto http


cache_peer test-www.censored.com parent 80 0 no-query originserver name=test-www
acl sites_test-www dstdomain test-www.censored.com
cache_peer_access test-www allow sites_test-www
acl http proto http


acl melbourne src 0.0.0.0/0
http_access allow melbourne


access_log /var/log/squid/access.log
cache_mgr username@sanatised.com
 
Old 05-10-2012, 06:53 PM   #2
4Paul4
Member
 
Registered: Jul 2011
Posts: 51

Original Poster
Rep: Reputation: Disabled
Bump.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
how to customize the squid with ACL and url filter nuwan_silva Linux - Newbie 1 12-13-2011 03:35 PM
Squid ACL to allow access to a child URL below a blocked main URL soslinux Linux - Server 1 10-13-2011 02:47 AM
[SOLVED] Squid Acl block access to a particular url rexjenny Linux - Server 2 10-05-2011 12:02 AM
[SOLVED] URL redirection or reverse proxy? vbekker Linux - Software 3 12-28-2010 03:37 PM
Squid as a reverse proxy, acl problems Mustafa Ismail Mustafa Linux - Networking 1 06-12-2010 07:29 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 04:42 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration