Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hello!
I have squid setup with ntlm authentication, but i want to allow some networks and users pass proxy without authentication, so I added acl's and http_access rules before auth requirement, but it still doesn't work.
Here part of my squid.conf related to the auth and acl:
Code:
auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 15
auth_param basic credentialsttl 2 hours
auth_param ntlm keep_alive off
#### NET ACL ####
acl admin_net src 172.17.20.0/24
#### AUTH ACLs ####
acl Authed proxy_auth REQUIRED
acl NotAuthed proxy_auth -
#### SERVERS
http_access allow admin_net
http_access deny all !Authed
http_reply_access allow all
What i am missing here? Why squid still requires auth for 172.17.20.0/24 network?
Your configuration looks correct. Are you sure you're restarting squid after making changes in squid.conf?
And perhaps try different browsers from different IPs
You may try the following to achieve the same result:
Hi,
Your configuration looks correct. Are you sure you're restarting squid after making changes in squid.conf?
And perhaps try different browsers from different IPs
Regards
Thank you for your reply.
Usually i am reloading squid configuration using
Code:
squid3 -k reconfigure
but sometimes I restart it too.
it didn't helped in this case/
I used Chrome and Konqueror from Fedora and IE from Win 7 (Fedora and Win 7 are even in different networks) - the result still the same.
also some info about OS: Debian 6 with latest updates
squid version: 3.1.16
Does the following rule for user2 work?
No, it doesn't
It should work.
Maybe it's the icap related stuff. I don't use icap, so I cannot verify if it's the case, but you can move the icap directives right under the http_access rules and see if it changes anything.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.