Project

General

Profile

Actions

Feature #4461

closed

Squid options too late in squid.conf

Added by Volker Kuhlmann over 9 years ago. Updated almost 8 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
Squid
Target version:
-
Start date:
02/22/2015
Due date:
% Done:

0%

Estimated time:
Plus Target Version:

Description

The UI on Services->Proxy server->ACL has a good list list of ACL types to add.
Unfortunately most of these are not going to do anything because the UI inserts them at the end of squid.conf, by which all the previsouly defined http_access directives have already been evaluated.

Likewise, Services->Proxy server->Common allows to enter custom ACLs, which are also inserted at the end of squid.conf where they are most likely not going to be effective.

There is no way to insert directives in squid.conf before

http_access deny !safeports
http_access deny CONNECT !sslports

to influence those two.

I would like to allow some specific exceptions to destination domain and destination port (e.g. plesk control panels) but don't like to allow extra ports for all destinations.

Tested squid3-dev 3.3.10 pkg 2.2.8 on 2.1.5.
Not sure whether this is a bug or feature request.

Actions

Also available in: Atom PDF