Scribd
Upload
179 views1 page

Blokfb

The document outlines steps to configure an ACL and proxy access rules in Squid for the accountant using the proxy: 1) Create ACLs for the proxy client IP, facebook domain, and office hours; 2) Deny HTTP access to facebook for the accountant during office hours; 3) Deny HTTPS CONNECT access to facebook for the accountant during office hours. The configuration is saved and Squid reloaded to implement the new rules.

Uploaded by

Felix Stanley
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as ODT, PDF, TXT or read online on Scribd
179 views1 page

Blokfb

The document outlines steps to configure an ACL and proxy access rules in Squid for the accountant using the proxy: 1) Create ACLs for the proxy client IP, facebook domain, and office hours; 2) Deny HTTP access to facebook for the accountant during office hours; 3) Deny HTTPS CONNECT access to facebook for the accountant during office hours. The configuration is saved and Squid reloaded to implement the new rules.

Uploaded by

Felix Stanley
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as ODT, PDF, TXT or read online on Scribd
You are on page 1/ 1

#1: Create an acl for proxy clients.

acl lan src 192.168.10.50/32


#2: Create an acl for facebook domain (any required sites)
acl fb dstdomain .facebook.com
#3: Create an acl office time for Mon-Sat, 10:00 to 17:00 (24hrs)
acl officetime time MTWHFA 10:00-17:00
#4: Deny access to "http" facebook to accountant only in office times
http_reply_access deny fb lan officetime
#5: The below line will deny access to "https" secured facebook to the proxy user "accountant" in
office times. Squid proxy will deny access to "https" facebook to accountant only in office times.
http_access deny CONNECT fb lan officetime
#(save the squid.conf configuration file)
#6: And finaly reload squid service to take effect changes
[root@server ~#]service squid reload
Tips: The way to include multiple sites in one ACL

You might also like