redirect_program /usr/local/bin/squidGuard -c /usr/local/squidGuard/squidGuard.conf
access_log /var/log/squid/access.log squid
auth_param basic children 5
auth_param basic realm Proxy Server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
auth_param basic program /usr/lib/squid/squid_ldap_auth -R -b "dc=dominio,dc=net" -D "cn=Administrador,cn=Users,dc=dominio,dc=net" -w "senha" -f sAMAccountName=%s -h ipdoad
external_acl_type ldap_group %LOGIN /usr/lib/squid/squid_ldap_group -R -b "dc=MJV,dc=net" -D "cn=Administrador,cn=Users,dc=dominio,dc=net" -w "senha" -f "(&(objectclass=person)(sAMAccountName=%v)(memberof=cn=%a,ou=internet,dc=dominio,dc=net))" -h ipdoad
#Recommended minimum configuration:
acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
#
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
#acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.21.0.0/24 # RFC1918 possible internal network
#acl localnet src 192.168.0.0/24 # RFC1918 possible internal network
#
acl rh external ldap_group rh
acl inovar external ldap_group inovar
acl AcessoFull external ldap_group AcessoFull
acl autenticacao proxy_auth REQUIRED
http_access allow localnet autenticacao
1,0-1 Top
Nenhum comentário:
Postar um comentário