Differences

This shows you the differences between two versions of the page.

--- авторизация_доступа_к_ресурсам_через_squid [2021/02/24 13:16]
val
+++ авторизация_доступа_к_ресурсам_через_squid [2023/03/18 20:20] (current)
val [Авторизация на основе имени пользователя]
@@ Line 8: / Line 8: @@
 gate# cat /etc/squid/deny_hosts.txt
 </code><code>
-.*ok\.ru.*
+ok\.ru
-.*vk\.com.*
+vk\.com
 </code>
@@ Line 15: / Line 15: @@
 gate# cat /etc/squid/permit_hosts.txt
 </code><code>
-.*microsoft\.com.*
+microsoft\.com
 </code>
@@ Line 31: / Line 31: @@
 acl permit_hosts url_regex "/etc/squid/permit_hosts.txt"
+# order is important
 http_access allow big_boss
 http_access allow our_pppoe_networks !deny_hosts
@@ Line 44: / Line 45: @@
 <code>
-gate# cat /etc/squid/squid.conf
+gate# cat /etc/squid/conf.d/my.conf
 </code><code>
 ...
-# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
-...
-# Access for all success authentificated users
 #acl inetuser proxy_auth REQUIRED
+#acl inetuser proxy_auth user1@CORP13.UN user2@CORP13.UN
-# Ассеss for users from list
+acl inetuser proxy_auth_regex "/etc/squid/group1.acl"
-#acl inetuser proxy_auth user1@CORPX.UN user2@CORPX.UN ...
-# Ассеss for users from file
-#acl inetuser proxy_auth_regex "/etc/squid/group1.acl"
 http_access allow inetuser
-http_access deny all
-...
 </code>
@@ Line 67: / Line 59: @@
 ==== Для file, nis, ldap авторизации ====
 <code>
-gate# getent group group1 | cut -f4 -d: | tr "," "\n" > group1.acl
+gate# getent group group1 | cut -f4 -d: | tr "," "\n" | tee /etc/squid/group1.acl
 gate# squid -k reconfigure

Методические материалы Лохтурова Вячеслава

User Tools

Site Tools

Differences

Page Tools