On Tue, 2006-06-06 at 15:13 +0200, Philipp Nyffenegger wrote:
> >
> > acl N_IPS urlpath_regex ^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+
> > acl connect method CONNECT
> >
> > http_access allow connect N_IPS all
>
> Why do all these tipps refer to "urlpath_regex" ? This is IMHO false.
> At least it does not match at my site. There is no URL-Path in the
> CONNECT-Method, iirc.
>
> This works fine in blocking Skype via Squid at my site :
>
> acl CONNECT method CONNECT
> acl skype url_regex ^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+
> .
> deny_info ERR_CLIENT_HTTPS2IP_DENIED skype
> http_access deny CONNECT skype
I might have read the ACL wrong, but aren't you blocking all HTTPS
access when the server address is specified as an IP this way?
Kinkie
