20 Sep
2001
20 Sep
'01
19:59
Heya Kurt,
Hope all is well. FWIW: You can use "quick" with IPF to force the packet end at that rule. Section 2.3: http://www.obfuscation.org/ipf/ipf-howto.txt
Yes, I know, I wrote an article or two on IPF way back when =). My point was logically there are only so many ways to parse rules (and since squid ACL's do NOT have a "quick" keyword or equiv.....). BTW one quick hint: lump acl's together, so if you have: acl deny-ads dstdomain .ads.tucows.com acl deny-ads dstdomain .tucows.com you will get a warning when restarting squid that they overlap, thus making it easy to squirrel out duplicate rules/overlaps.
Cheers,
Kurt Seifried, kurt@seifried.org A15B BEE5 B391 B9AD B0EF AEB0 AD63 0B4E AD56 E574 http://www.seifried.org/security/