acl logged_in proxy_auth REQUIRED acl no_group_restriction src 192.168.x.y http_access allow no_group_restriction logged_in
Btw, Your wb_group acl's looks ery odd.. somehow I do not think you have a domain group called "proxy_auth_regex" or "-i"... (proxy_auth_regex is a acl type for pattern matching on the username, has nothing to do with groups or winbind). Regards Henrik Alex Short wrote: > > I use squid to restrict certain people to limited surfing, others to full > surfing. This is presently accomplished by setting a group giving access > level to either limited or full on the NT domain. Works well. But now i > want a computer that can surf regardless of which group the user is in, > but still maintain logging of both what and whom (not just the ip in the > logs, username as everyone else) > > Any idea how to setup the acl's > now we have a > acl full wb_group proxy_auth_regex -i "Full" > acl limit wb_group proxy_auth_regex -i "Limit" > > then > http_access allow full > http_access allow limit limitedsites > http_access deny all > > I tried setting the ip to static ip and making a new acl inetall src > 192.168.1.55 then http_access allow inetall, but it didn't seem to take as > expected. > > Any ideas?
