我希望有一些鱿鱼专家。我正在尝试配置我的 squid.conf 文件。配置有效,但问题是:当我尝试仅阻止一个站点时,它会阻止所有内容......
这是我的代码:
acl manager proto cache_object
acl localhost src 127.0.0.1/32 ::1
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
acl biz_network src 10.1.42.0/24
acl biz_hours time M T W T F 9:00-17:00
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl fortytwo_network src 192.168.42.0/24
acl bad_url dstdomain .msn.com #### THIS IS THE 1ST LINE THAT CAUSE A PROBLEM ####
http_access allow biz_network biz_hours
http_access allow fortytwo_network
http_access deny bad_url #### THIS IS THE 2ND LINE THAT CAUSE A PROBLEM ####
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all
http_port 8080
coredump_dir /var/spool/squid3
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern (Release|Packages(.gz)*)$ 0 20% 2880
refresh_pattern . 0 20% 4320
visible_hostname BenNahmias
粗线将阻止所有 URL
没有这些行,我可以访问所有 URL
我的问题是,行的正确顺序(我标记的那些)是什么,所以只有我选择的站点会被阻止。
- 提前感谢,奥雷尔。