hi i am sending u my acl configuration.. it won't work . u will see in the acl as i want to allow some of my IP's for browsing & deny some of my IP's for browsing. can u plz help me solving this problem ?? right now every one is allow for browsing no matter his/her ip is in acl or not. & no matter his / her ip is allowed or deny Please help me.
Thanks in Advance #Defaults: #ip-address/netmask ... (URL host's IP address) acl all src 192.168.0.1-192.168.0.250/255.255.255.0 acl masoodhanif src 192.168.0.10/255.255.255.0 acl maqsood src 192.168.0.1/255.255.255.0 acl asim src 192.168.0.135/255.255.255.0 acl ashar src 192.168.0.125/255.255.255.0 acl haroon src 192.168.0.100/255.255.255.0 acl usman src 192.168.0.124/255.255.255.0 acl aafaq src 192.168.0.109/255.255.255.0 acl bashir src 192.168.0.123/255.255.255.0 acl maryam src 192.168.0.155/255.255.255.0 acl FaizUlHassan src 192.168.0.119/255.255.255.0 acl noumaan src 192.168.0.132/255.255.255.0 acl fawad src 192.168.0.141/255.255.255.0 acl NoumanBashir src 192.168.0.118/255.255.255.0 acl asimzafar src 192.168.0.118/255.255.255.0 acl adnan src 192.168.0.12/255.255.255.0 acl KhurramHussain src 192.168.0.120/255.255.255.0 acl arifahmad src 192.168.0.125/255.255.255.0 acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 #acl ss_ports port 569 acl SSL_ports port 443 563 acl Safe_ports port 80 21 443 563 70 210 1025-65535 acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT # TAG: http_access # Allowing or Denying access based on defined access lists # # Access to the HTTP port: # http_access allow|deny [!]aclname ... # # Access to the ICP port: # icp_access allow|deny [!]aclname ... # # NOTE on default values: # # If there are no "access" lines present, the default is to allow # the request. # # If none of the "access" lines cause a match, the default is the # opposite of the last line in the list. If the last line was # deny, then the default is allow. Conversely, if the last line # is allow, the default will be deny. For these reasons, it is a # good idea to have an "deny all" or "allow all" entry at the end # of your access lists to avoid potential confusion. # #Default configuration: http_access allow manager localhost http_access deny manager #http_access deny mmtype http_access deny !Safe_ports http_access deny CONNECT !SSL_ports #http_access deny ss_ports # # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS # http_access allow masoodhanif http_access allow maqsood http_access allow asim http_access allow ashar http_access allow haroon http_access allow usman http_access allow aafaq http_access allow KhurramHussain http_access allow arifahmad http_access deny bashir http_access deny maryam http_access deny FaizUlHassan http_access deny noumaan http_access deny fawad http_access deny NoumanBashir http_access deny asimzafar http_access deny adnan http_access deny all
