Home » Security

Configure Squid on XP

March 13th, 2010 | xumi | 0 Comments »

Question:

I am fairly new to this, so please explain this fairly elementary question.

I am trying to configure squid on XP (squid-2.7.STABLE7-bin) in the following 2 ways. Can I have a sample squid.conf for each configuration

My existing configuration (squid.conf default ) is attached. Please note domains on both the questions are NOT the same – I am using this so that I can tell them apart.

1) What do I need to add to my conf file so that all web-sites are BLOCKED except paypal.com, www.google.com, *.microsoft.com ( meaning the entire microsoft domain ), *.ibm.com ( all of ibm )

2) What do I need to add to my conf file so that all websites are ALLOWED except paypal.com, www.google.com , *.microsoft.com ( meaning the entire microsoft domain ), *.hp.com (all of hp )

3) Do I need two nics when my router can be configured to accept only connections from one ip ?
4) How to prevent the squid proxy hosts bypassing the proxy based filtering by directly giving an ip-address in these configurations?

Thanks
rg

Solution:

Hello there!

Open your conf file up and go to find > “YOUR CLIENT”
Just under this section add in your rules.

First of all there are many ways to go about this. However I prefer to setup access lists (create a file in the same folder and name them .acl)

Inside your acls (create at least 2 something like squid-block.acl, squid-safe.acl and maybe another like squid-bypass.acl)

Now in the .conf file

First start by identifying your networks

acl src our_networks 192.168.1.0/24 (for example)
http_access allow our_networks

Now you can either add in the info in here or do use the access lists.

e.g

acl src our_networks 192.168.1.0/24
acl pp dstdomain .paypal.
http_access allow pp
http_access deny
http_access allow our_networks

or

acl src our_networks 192.168.1.0/24
http_access deny

Look here for more examples www.squid-cache.org

There is so much more you can do here, especially if you call the access lists outside of the .conf that way you can easily add to the list and the rules are already in place.

Tags: Allow all but a few domains · Block all but a few domains · Squid Configuration on NT

digg

delicious

stumbleupon

technorati

Google

live

Sphinn

Mixx

newsvine

reddit

yahoomyweb

2 Stars

3 Stars

4 Stars

5 Stars

(No Ratings Yet)

Loading ...

This post was written by:

xumi - who has written 27463 posts on it.rss24h.com.

Email This Author | xumi's RSS

Comments (0)

There are no comments for this post.

Trackbacks - Pingbacks (0)

There are no trackbacks for this post.

Leave a Reply

Recent Posts
- How do i restrict database mail not to send out of specific domain
  Question: Hi, We are having our QA system and production...
- from Oracle to sql server 2008
  Question: Hello. Know of any tool that allows me...
- sql convert date
  Question: I’m having trouble with the following WHERE clause; WHERE...
- SBS 2003 Backup Problem Stoping and starting Exchange
  Question: I am backing up a 2003 SBS Server....
- How to Recover Overwritten Word Documents?
  Question: How to recover an accidentally overwritten document in...
- SSIS error – Argument “SMTP” for option “connection” is not valid
  Question: I have built an SSIS package that works...
- Is there a utility that can query a DVD-RW for its firmware revision?
  Question: See title Solution: Hello, “lshal” provides that info Scroll through...
- Lotus connector for outlook 2007
  Question: if these Lotus connector for outlook 2007 available....
- ASP.NET Required Field Validators
  Question: Hello, I’m using a asp.net required field validators for...
- reporting services
  Question: I have a report in reporting services (....
- Dreamweaver – Turn off IE6 on Browser Compatibility
  Question: When I run the Browser Compatibility check on...
- Help comine Jquery Tools and Jquery UI script
  Question: Hello, Newbie to jquery, need assistance. I would like...
- Adding one static value to bound ItemSource in XAML
  Question: Hi, I have WPF program which uses basic binding...
- How to use WHERE clause on related table in LinqDataSource
  Question: I’ve used the LinqDataSource successfully with a WHERE...
- apache .htaccess php_value
  Question: Currently I’m using Apache 2.0 as Module (dso)...
- RE : Continuing DHTML
  Question: Continuing to the previous question which Skrile is...
- Cygwin update in order to use “make” command
  Question: Hi, I have a windows xp that someone installed...
- Microsoft Calendar in Microsoft Office 2003
  Question: Hi All, When exporting from Microsoft Calendar in Outlook...
- Special Access versus UNE T1 loops
  Question: Is there any difference between Special Access T1...
- Recommend me some tools to do the following
  Question: Do you recommend some tools that we can...
Random Posts
- vine server/vnc server hangs on keyboard input from client
  Question: Hi, I did the following on my MAC...
- how do I get return(false) to work on submitting a page in asp.net
  Question: I have a js that I registered to...
- Working while on a business trip
  Question: Let’s say you are going on a business...
- MOSS My Sites and My Links Crash Over Weekend
  Question: For the past several weeks, I have had...
- HTML code in MySQL
  Question: I have to have the HTML code for...
Recent Comments
- Pol53 | 10-10-2009
  Links to stuff we talked about:Apologies again for problems with
- Lyagushkka | 10-09-2009
  Who knows where to download XRumer 5.0 Palladium? Help, please.
- kamilopoland | 28-08-2009
  Hello to all ! Greetings From Poland ! Very nice
- Web 2.0 | 27-07-2009
  Players with an old version of the client application can
- KonstantinMiller | 07-07-2009
  Hello. I think the article is really interesting. I am