alsadmlinux
(usa Outra)
Enviado em 28/04/2011 - 08:44h
Prezados,
Meu Squid esta funcionando corretamente, realizando as autenticações e bloqueando os sites, mas gostaria de criar grupo de usuário exemplo Administrador e usuario especiais para acessar tudo. O que estou fazendo de errado segue a conf do meu squid.
##############################################################################ALS COMPUTADORES AUTENTICAÇÃO
##----- Configurando autenticação dos usuários no Squid --------##
acl all src 0.0.0.0/0.0.0.0
acl bloqueados url_regex -i "/etc/squid/bloqueados.txt"
acl liberados url_regex -i "/etc/squid/liberados.txt"
####INICIO - LIBERAR SITES PARA ADMINISTRADOR####
acl sitesliberadosadministrador url_regex -i "/etc/squid/sitesliberadosadm"
####FIM - LIBERAR SITES PARA ADMINISTRADOR####
http_access deny bloqueados !liberados
auth_param basic children 5
auth_param basic realm ALS COMPUTADORES - CONTROLE DE ACESSO A INTERNET - Entre com seu usuario e senha
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/senhas_usuarios
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
acl autenticados proxy_auth REQUIRED
####INICIO - LIBERAR SITES PARA ADMINISTRADOR####
acl administrador proxy_auth "/etc/squid/usuarioadministrador"
http_access allow administrador sitesliberadosadministrador
####FIM - LIBERAR SITES PARA ADMINISTRADOR####
http_access allow autenticados
http_access deny all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
#
acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
icp_access allow localnet
icp_access deny all
################################################
##### Porta, Nome e Cache #####
################################################
http_port 3128
visible_hostname apae
cache_mem 150 MB
maximum_object_size_in_memory 64 KB
maximum_object_size 256 MB
cache_swap_low 90
cache_swap_high 95
access_log /var/log/squid/access.log squid
hosts_file /etc/hosts
coredump_dir /var/spool/squid