Couldn't get it to work with either:
acl room30 ident cartman
or
acl room30b srcdomain cartman
Including using the -I term...
Have you any other ideas??! All I want to do is let squid block by pc
name?!?
Dug Stokes
Senior Webmaster
Gilberd IS Department
E: dug@gilberd.com
W: www.gilberd.com
-----Original Message-----
From: Thomas Adam [mailto:thomas_adam16@yahoo.com]
Sent: 10 February 2003 13:45
To: Dug Stokes
Subject: RE: [suse-linux-uk-schools] Squid blocking per room?/Per machine
(wildcard)?
--- Dug Stokes
with it... Prefer the nakedness of my ickle Squiddy.
Fair enough....
So I'm guessing it wouldn't just be something like;
acl room30 ident 30-pc23 http_access deny room30
Or am I close?? :o)
I think that'll do it :-) give it a go and remember to do: squid -k reconfigure afterwards :-) Do let me know how you get on.... Hmm, my computer degree is boring.. :-) -- Thomas Adam
Thanks again for all your help!!
Dug Stokes Senior Webmaster Gilberd IS Department E: dug@gilberd.com W: www.gilberd.com
-----Original Message----- From: Thomas Adam [mailto:thomas_adam16@yahoo.com] Sent: 10 February 2003 12:51 To: Dug Stokes Subject: RE: [suse-linux-uk-schools] Squid blocking per room?/Per machine (wildcard)?
Dug,
--- Dug Stokes
wrote: > What acl would that be?? :o( Sorry to sound dense... Been a long weekend!!
Good luck with the SQL, and thx for ur help!
You're not being dense. The ACL in question would be one that you create, and then add a reference to it within your "/etc/squid.conf" file.
I don't suppose you're running "squidGuard" as well, are you?
I'm not worried about SQL, it's easy. I only wish we were using Postgresql as opposed to Oracle :-( Nevermind....
-- Thomas Adam
Dug Stokes Senior Webmaster Gilberd IS Department E: dug@gilberd.com W: www.gilberd.com
-----Original Message----- From: Thomas Adam [mailto:thomas_adam16@yahoo.com] Sent: 10 February 2003 12:21 To: Administrator; 'suse-linux-uk-schools@suse.com' Subject: RE: [suse-linux-uk-schools] Squid blocking per room?/Per machine (wildcard)?
If you have indetd running then it should be easy.
What I'd be inclined to do, is to have an ACL whereby it contains all the names of the computers (workstation FQH's) contained in each room.
Have that ACL authenticated to usually allow access, except if you change the "/etc/squid.conf" file to disallow access to that room.
Hmm, I'm having fun in my SQL tutorial at the moment, and am getting no work done, he he....good old Uni.
-- Thomas Adam
--- Administrator
wrote: > IP's are DHCP, so that's kinda random. The name (netbios?) is unique though, IdentD service also running too, if that's any help. :S
How can I block by pc name?
Dug Stokes Senior Webmaster Gilberd IS Department E: dug@gilberd.com W: www.gilberd.com
-----Original Message----- From: Thomas Adam [mailto:thomas_adam16@yahoo.com] Sent: 10 February 2003 11:55 To: Administrator; 'suse-linux-uk-schools@suse.com' Subject: Re: [suse-linux-uk-schools] Squid blocking per room?/Per machine (wildcard)?
Yes, I have some....
Squid works its filtering not only on ACL's but on IP/subnets too.
Assuming that the IP addresses of your machines in the specific room have a commonality about them then it should be easy enough for you to block an entire room.
HTH,
-- Thomas Adam
--- Administrator
wrote: > Is there any easy way anyone can see of letting Squid block internet access to an entire room of kids?
At the moment, the ACL's block some users and some websites, but sometimes, for obvious reasons a teacher wants us to block, say, Room 30 from having internet access.
Each machine is Win2k, and is named '30-pcxx' where xx is a number to uniquely id the machine.
I've written a vb program before that runs before IE, but it isn't very successful!!
Any ideas?? Pur-lease?!
Dug Stokes Senior Webmaster Gilberd IS Department E: dug@gilberd.com W: www.gilberd.com
-- To unsubscribe, e-mail: suse-linux-uk-schools-unsubscribe@suse.com For additional commands, e-mail: suse-linux-uk-schools-help@suse.com
===== Thomas Adam
"The Linux Weekend Mechanic" -- www.linuxgazette.com
Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com
-- To unsubscribe, e-mail: suse-linux-uk-schools-unsubscribe@suse.com For additional commands, e-mail: suse-linux-uk-schools-help@suse.com
===== Thomas Adam
"The Linux Weekend Mechanic" -- www.linuxgazette.com
__________________________________________________ Do You Yahoo!? Everything you'll ever need on one web page
=== message truncated === ===== Thomas Adam "The Linux Weekend Mechanic" -- www.linuxgazette.com __________________________________________________ Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com
On Tue, Feb 11, 2003 at 02:23:12PM -0000, Administrator wrote:
Couldn't get it to work with either:
acl room30 ident cartman
That would mean that the identd service on the machine was returning the name "cartman". Usually such a service returns the name of the logged in user, which would match any machine with a user called "cartman" was logged into. Regardless of where it was.
or acl room30b srcdomain cartman
This would mean look for something in the DNS (NB not NetBIOS) domain "cartman". Which isn't much use at all, especially since it's looking for a non existant domain. (All this does is overload the root nameservers.)
Including using the -I term...
Are you sure you don't mean -i, case insensitive match...
Have you any other ideas??! All I want to do is let squid block by pc name?!?
More likely what you need is something of the form acl room30 srcdom_regex 30-pc*.gilberd.essex.sch.uk once you have also set up bind on the machine. -- Mark Evans St. Peter's CofE High School Phone: +44 1392 204764 X109 Fax: +44 1392 204763
participants (2)
-
Administrator
-
Mark Evans