Cheers for the replies folks,
I am currently tending to agree with the use of two seperate instances of
Squid. Aside from the logs, it should actually make our system easier to
manage as I got really confused trying to suss out a squid.conf that may or
may not always have a true upstream proxy. Using two squid instances means
this issue is no longer apparent as any true upstream proxy would only need
to be declared (or not declared as the case may be!) in the caching squid,
not the authenticating/ACL'ing squid that clients connect to.
We are planning on using the "peer_access <peer> allow|deny acl acl acl ..."
ACL so I am glad someone else has further confirmed this 'should' work. I'm
hoping this will work fine with external ACL's aswell? We will be writing a
custom one to allow us to authorise users based on our custom Identd string
returned from clients.
Thanks again.
Regards,
nry
_________________________________________________________________
Tired of 56k? Get a FREE BT Broadband connection
http://www.msn.co.uk/specials/btbroadband
Received on Mon Sep 29 2003 - 02:48:01 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:20:03 MST