Time for action – using a request protocol to construct access rules

Let's say we want to deny all FTP requests from a particular subnet, known as, research labs. The configuration should look similar to the following:

acl ftp_requests proto FTP
acl research_labs src 192.0.2.0/24
http_access deny research_labs ftp_requests

The previous configuration lines will instruct Squid to deny all the FTP requests from the network 192.0.2.0/24.

Note

Please note that some firewalls block active FTP by default. Please check http://www.ncftp.com/ncftpd/doc/misc/ftp_and_firewalls.html for more information.

Apart from the previously mentioned standard schemes, we have a Squid specific URL scheme called cache_object, which is used for the cache manager (cachemgr) interface. ...

Get Squid Proxy Server 3.1 Beginner's Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.