proxy - Allow squid to permit skype with other restrictions for website -
I am trying to configure the squid proxy in my local network.
Here is a snippet my Now, the problem is that when I allow Skype, it will not allow all websites Permission starts. I want a way that I can restrict websites to In addition, I have to block Port 443, but allow the same port for Skype. Please guide me how this can be possible. Thanks, squid.conf file
ALL localNet src 10.0.0.0 / 8 # RFC1918 possible internal network ACL Sthaniynet source 172.16 K0k0 / 12 # RFC 1 99 18 potential internal network ACL Sthaniynet src 192.168.0.0/16 # RFC 1 99 18 potential internal network ## custom rules to allow AC websites Allowed "All: 443 ACL Protectport Port 80 # ACL Protectport Port 2367 # Skype # Iel Surkshitport Port 21 # FTP ALC Surkshitport port 443 # https # CL Surkshitport port 70 # Gopher # CL Surkshitport port 210 # Wallis # CL Surkshitport port 1025-65535 # Ananjikrit port # ACL Surkshit_port port 280 # http-mgmt #acl Surkshit_port port 488 # GSS-HT # CL Protectport Port 591 # FileMaker # CL Protectport Port 777 # Connect Multilanguage HTTP ACL Connect Method # Tag: http_access # Allow access to the defined access lists or access # # http_access # # HTTP access to prohibit access lists. Disclaimed [!] Eccleme ... # Focus on the default values # # There are no "Access" rows, reject the default # request # # If any of the "Access" lines is not a match reason, Then in the default list # is the last line in the last line if the last line # was rejected, the default is the permission, on the contrary, if the last line # is allowed, the default will be denied. For these reasons, in order to avoid potential confusion #accessibility "deny all at the end of the list" or "Allow all this" entry # good idea # # Default: # Http_access all # # recommended minimum configuration Deny: ## Only localhost ACL Numeric_IP dstdom_regex ^ (([0-9] + \. [0- 9] + \. [0-9] + + [0-9] +) | (\ [ ([0- 9F] +) ?: ([0- 9AF] +)? \])): 443 ACL Skype_UA Browser ^ Skype ^ http_access Manager Localhost refuses http_access manager They are # unknown ports deny requests http_access denied! Do not connect to other than SafePort # SSL ports http_access Deny! SSL_ports # # We strongly only # to access services to protect innocent # Web applications that recommend think moving on proxy servers that "Sthaniyhost" is a local user denies ## Http_access To_localhost # # # To allow logging from your clients # Local Networks # For the list of your (internal) IP networks, localenet adapter in the ALC section, from where browsing Should Numti Allow Http_access permissions Http_access to allow Allow allow Sthaniynet http_access allow Sthaniynet majority to reject numeric_IPs Skype_UA http_access! AllowedSites # and finally deny all other access to this proxy http_access Reject All
allowed sites
file domain, which lists acceptable sites.
Comments
Post a Comment