URL: https://www.opennet.me/cgi-bin/openforum/vsluhboard.cgi
Форум: vsluhforumID12
Нить номер: 162
[ Назад ]

Исходное сообщение
"download zip i exe ADMINS, download zip i exe CENTR tolko s symantec.com"
Отправлено Dexter , 07-Ноя-02 15:33

Izvinite srazu za ptichki ...
Problema: nado klientam "CENTR" orkrit dostup dlia .zip .exe tolko! iz
domeinov symantec`a. Klientam "ADMINS" dostup dlia .zip .exe polnij.
Imeem:
-------------------------
acl CENTR src 192.168.111.49-192.168.111.80/255.255.255.255
acl ADMINS src 192.168.111.93/255.255.255.255
acl symantec dstdomain symantec.com symantecliveupdate.com akamai.net
acl strogo urlpath_regex -i \.qt$ \.com$ \.vbs$ \.bat$ \.pps$ \.rar$ \.ace$ \.arj$
acl ZIP urlpath_regex \.[zZ][iI][pP]$ \.[eE][xX][eE]$
acl zapresch_domeni dstdomain "/etc/squid/policy/zapresch_domeni"
acl dl_zapresch_domeni dstdomain "/etc/squid/policy/dl_zapresch_domeni"
acl zapresch_slova url_regex "/etc/squid/policy/zapresch_slova"
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow ZIP symantec CENTR??? javno nerabotaet
http_access deny ZIP !ADMINS??? otrubaet vsio krome ADMINS..
http_access deny strogo !ADMINS
http_access deny zapresch_slova !ADMINS
http_access deny zapresch_domeni !ADMINS
http_access deny dl_zapresch_domeni rabochee_vremia !ADMINS
http_access allow ADMINS
http_access allow CENTR
http_access deny all
--------------------------------
tobesh ja reshaju problemu, chtobi NAV sam obdeitilsia u klientov setki bez privelegij cherez proxy i ne strekozlit` po vsem kompam i samomu cherez samba ili td update NAV`u tolkat -:-/
spasibo za liubie idei po dannoj teme.

Содержание

RE: download zip i exe ADMINS, download zip i exe CENTR tolko s symantec.com,Dexter, 18:22 , 08-Ноя-02
RE: download zip i exe ADMINS, download zip i exe CENTR tolko s symantec.com,iiws, 06:53 , 10-Ноя-02
- RE: download zip i exe ADMINS, download zip i exe CENTR tolko s symantec.com,Dexter, 12:08 , 11-Ноя-02

Сообщения в этом обсуждении

"RE: download zip i exe ADMINS, download zip i exe CENTR tolko s symantec.com"
Отправлено Dexter , 08-Ноя-02 18:22

narod! vi gde?! auuuuu.......
.........grlgrlglrlgrlgl
......grlgrlglrlglrlglr
.... bul` bul` bul` bul`.....

"RE: download zip i exe ADMINS, download zip i exe CENTR tolko s symantec.com"
Отправлено iiws , 10-Ноя-02 06:53

>
>>
>-------------------------
>
>acl CENTR src 192.168.111.49-192.168.111.80/255.255.255.255
>acl ADMINS src 192.168.111.93/255.255.255.255
>acl symantec dstdomain symantec.com symantecliveupdate.com akamai.net
>
>acl strogo urlpath_regex -i \.qt$ \.com$ \.vbs$ \.bat$ \.pps$ \.rar$ \.ace$ \.arj$
>
>acl ZIP urlpath_regex \.[zZ][iI][pP]$ \.[eE][xX][eE]$
>acl zapresch_domeni dstdomain "/etc/squid/policy/zapresch_domeni"
>acl dl_zapresch_domeni dstdomain "/etc/squid/policy/dl_zapresch_domeni"
>acl zapresch_slova url_regex "/etc/squid/policy/zapresch_slova"
>
>http_access allow manager localhost
>http_access deny manager
>http_access deny !Safe_ports
>http_access deny CONNECT !SSL_ports
>
>http_access allow ZIP symantec CENTR??? javno nerabotaet
>http_access deny ZIP !ADMINS??? otrubaet vsio krome ADMINS..
>
так и должно быть !
пиши так
acl all 0.0.0.0/0.0.0.0
http_access allow ZIP symantec CENTR
http_access deny all !ZIP !ADMINS !symantec

"RE: download zip i exe ADMINS, download zip i exe CENTR tolko s symantec.com"
Отправлено Dexter , 11-Ноя-02 12:08

Bolshoe spasibo za ideju -:-> no beda pohozhe bila ne v etom..
kogda deklariroval "acl symantec" esli hostname blabla.symantec.com
a v zapisi "acl symantec" domain symantec.com to pochemuto eta "dura"
neponimaet, poka ne vpishesh polnij blabla.symantec.com
spasibo za otvet -:-> eto pomoglo vijasnit chto
http_access strochki deklarirovanni pravilno i problema
v drugom..
poka i izvinite za ptichki -:-p