November 24, 2024, 07:04:17 AM

News : LinuxSolved.com Linux Help Community Forum..


Author Topic: Restricting internet access with there IP addresses in squid  (Read 8821 times)

Offline moqthiyar

  • New Member
  • Posts: 2
Restricting internet access with there IP addresses in squid
« on: April 06, 2004, 06:07:51 AM »
Sir I am using squid as my proxy server I have given the “http access to allow all” entry in squid.conf file. And they are using it with proxy servers IP address and port number.
I want to restrict internet for some computers with there IP address.
Can you tell me how to configure it in squid.conf?

Offline Ricky

  • LST CareTaker
  • Specially Skilled
  • *****
  • Posts: 2381
Restricting internet access with there IP addresses in squid
« Reply #1 on: April 06, 2004, 07:00:20 AM »
first of all .u should have not used the allow all because then any one even from internet can access your proxy. ..
So first see that your squid.conf should look like this.
Squid Proxy configuration then to disallow some ips. then simply make an acl..
say you want to block 192.168.4.4 then
Code: [Select]
acl bad_ips src 192.168.4.4
http_access deny bad_ips
here bad_ips is a name for acl i have used.. u can use any thing ...
BTW.. ur type of questions has been already answered.. try to search the few threads related to squid.. :)

Offline dragoncity99

  • LST CareTaker
  • Experienced
  • *****
  • Posts: 551
Restricting internet access with there IP addresses in squid
« Reply #2 on: April 06, 2004, 10:53:01 AM »
Ricky, why not teach him to block a eth MAC address, this will permanently block the PC he wishes.

Offline moqthiyar

  • New Member
  • Posts: 2
Restricting internet access with there IP addresses in squid
« Reply #3 on: April 06, 2004, 01:43:27 PM »
Thanks for your replay I am trying to setup with MAC addresses
But when I tried this
%  ./configure –enable-arp-acl…

It says “bash: fg: %: no such job”
I saw it in a squid documentation there it say if src/acl.c doesn’t compile, then ARP ACLs are probably not supported on your system.

Offline dragoncity99

  • LST CareTaker
  • Experienced
  • *****
  • Posts: 551
Restricting internet access with there IP addresses in squid
« Reply #4 on: April 06, 2004, 03:01:45 PM »
SO, did u start arp's service? Or have it installed?

Offline Ricky

  • LST CareTaker
  • Specially Skilled
  • *****
  • Posts: 2381
Restricting internet access with there IP addresses in squid
« Reply #5 on: April 07, 2004, 10:12:48 AM »
moqthiyar> do you know wht does they mean by compiling it with arp-acl it means you have to again recompile the squid.
I think you are using ".. " don't use them.
only use.. ./configure --enable-arp-acl --enable-linux-netfilter --enable-snmp --enable-delay-pools  and all the options u want.  

If that don't work then simply you can use iptables to block the users. :)