[olug] Squid access with RAS server
Ryan O'Rourke
ryano at ch-gifts.com
Thu Aug 7 15:24:48 UTC 2003
I'm using Squid as a proxy server to restrict web access for our LAN.
Everything is working fine except for remote users who dial-in through
our MS RAS server.
The problem stems from the fact that our LAN is a 10.x.x.x subnet which
is, by default, a Class A subnet (255.0.0.0). All hosts on our LAN are
set to Class C (255.255.255.0), that is except when they dial in. That's
because an MS proxy will grab addresses from DHCP and use the /default/
subnet for the addresses instead of the subnet the DHCP server says it
should use. Therefore, all dialup users are assigned a 10.1.10.x/8
address and Squid is not allowing them web access.
I thought I had squid.conf setup correctly to allow 10.0.0.0/8 access,
but it's still not working. Any ideas?
### squid.conf snippet ###
acl localnetwork 10.0.0.0/8
http_access allow localnetwork
http_access allow all
Thank you.
-- Ryan
More information about the OLUG
mailing list