On 10/10/2013 12:40 p.m., Leonardo Rodrigues wrote:
>
> No need for two instances ...
>
> just get squid listening on how many ports you need it to:
>
> http_port port1
> http_port port2
> ...
> http_port portN
>
> create ACLs for each port
>
> acl port1 myport port1
> acl port1 myport port2
> ...
> acl portN myport portN
Small alteration: Use myportname instead of myport.
NP: The 'name' of a http_port in Squid defaults to the exact text string
used as the first parameter (host:port details) and can be set to
something else using the name=X option.
This is important because "myport" ACL matches TCP connection details
after NAT/TPROXY discovery which are not always the same as the
http_port listener details.
> and get all your http_access rules with the appropriate port ACLs
> as well, thus giving completly different policies depending on the
> proxy port used.
>
>
> http_access allow port1 other_rule
> http_access deny port1 other_rule
> etc etc
>
>
Amos
Received on Thu Oct 10 2013 - 04:37:12 MDT
This archive was generated by hypermail 2.2.0 : Thu Oct 10 2013 - 12:00:05 MDT