pfsense:squid:acls_access_control_lists
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| pfsense:squid:acls_access_control_lists [2020/04/06 14:48] – peter | pfsense:squid:acls_access_control_lists [2020/07/15 09:30] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== PFSense - Squid - ACLs (Access Control Lists) ====== | ====== PFSense - Squid - ACLs (Access Control Lists) ====== | ||
| + | |||
| + | See [[Squid: | ||
| + | |||
| + | ---- | ||
| todo | todo | ||
| + | |||
| + | < | ||
| + | acl manager proto cache_object | ||
| + | acl localhost src 127.0.0.1/ | ||
| + | acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1 | ||
| + | acl local_respmod src 127.0.0.1/ | ||
| + | |||
| + | # ACL Local Network | ||
| + | #acl localnet src 192.168.1.0/ | ||
| + | |||
| + | |||
| + | |||
| + | # Example rule allowing access from your local networks. | ||
| + | # Adapt to list your (internal) IP networks from where browsing | ||
| + | # should be allowed | ||
| + | acl localnet src 10.0.0.0/8 # RFC1918 possible internal network | ||
| + | acl localnet src 172.16.0.0/ | ||
| + | acl localnet src 192.168.0.0/ | ||
| + | acl localnet src fc00::/7 # RFC 4193 local private network range | ||
| + | acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines | ||
| + | |||
| + | # Only allow cachemgr access from localhost | ||
| + | # | ||
| + | # | ||
| + | |||
| + | http_access allow localhost manager | ||
| + | http_access deny manager | ||
| + | http_access allow localnet | ||
| + | http_access allow localhost | ||
| + | http_access deny all | ||
| + | |||
| + | icap_access allow local_respmod | ||
| + | icap_access allow localnet | ||
| + | icap_access deny all | ||
| + | </ | ||
| + | |||
pfsense/squid/acls_access_control_lists.1586184526.txt.gz · Last modified: 2020/07/15 09:30 (external edit)