Код: Выделить всё
acl comp_bank src 192.168.0.45 #Комп работника банка
acl site_bank url_regex -i rs.ru #Сайт куда надо щемиться
http_access allow comp_bank site_bank
http_access deny CONNECT !SSL_ports
http_access deny !Safe_ports
http_access deny all
redirector_access deny localhost
redirector_access allow SSL_ports
Логи говорят
Код: Выделить всё
1221899432.989 2 bank-rus.local.local TCP_DENIED/403 1289 CONNECT 194.67.29.137:443 as NONE/- text/html [User-Agent: fxApacheSSL/2.0.6.293\r\nProxy-Authorization: Basic YXM6QWJjMTAw\r\n] [HTTP/1.0 403 Forbidden\r\nServer: squid/2.6.STABLE21\r\nDate: Sat, 20 Sep 2008 08:30:32 GMT\r\nContent-Type: text/html\r\nContent-Length: 983\r\nExpires: Sat, 20 Sep 2008 08:30:32 GMT\r\nX-Squid-Error: ERR_ACCESS_DENIED 0\r\n\r]
1221899433.004 14 bank-rus.local.local TCP_DENIED/403 1287 CONNECT 194.84.87.12:443 as NONE/- text/html [User-Agent: fxApacheSSL/2.0.6.293\r\nProxy-Authorization: Basic YXM6QWJjMTAw\r\n] [HTTP/1.0 403 Forbidden\r\nServer: squid/2.6.STABLE21\r\nDate: Sat, 20 Sep 2008 08:30:32 GMT\r\nContent-Type: text/html\r\nContent-Length: 981\r\nExpires: Sat, 20 Sep 2008 08:30:32 GMT\r\nX-Squid-Error: ERR_ACCESS_DENIED 0\r\n\r]
1221899433.020 13 bank-rus.local.local TCP_DENIED/403 1287 CONNECT 194.84.87.12:443 as NONE/- text/html [User-Agent: fxApacheSSL/2.0.6.293\r\nProxy-Authorization: Basic YXM6QWJjMTAw\r\n] [HTTP/1.0 403 Forbidden\r\nServer: squid/2.6.STABLE21\r\nDate: Sat, 20 Sep 2008 08:30:33 GMT\r\nContent-Type: text/html\r\nContent-Length: 981\r\nExpires: Sat, 20 Sep 2008 08:30:33 GMT\r\nX-Squid-Error: ERR_ACCESS_DENIED 0\r\n\r]
1221899433.036 14 bank-rus.local.local TCP_DENIED/403 1289 CONNECT 194.67.29.120:443 as NONE/- text/html [User-Agent: fxApacheSSL/2.0.6.293\r\nProxy-Authorization: Basic YXM6QWJjMTAw\r\n] [HTTP/1.0 403 Forbidden\r\nServer: squid/2.6.STABLE21\r\nDate: Sat, 20 Sep 2008 08:30:33 GMT\r\nContent-Type: text/html\r\nContent-Length: 983\r\nExpires: Sat, 20 Sep 2008 08:30:33 GMT\r\nX-Squid-Error: ERR_ACCESS_DENIED 0\r\n\r]
1221899433.051 13 bank-rus.local.local TCP_DENIED/403 1289 CONNECT 194.67.29.137:443 as NONE/- text/html [User-Agent: fxApacheSSL/2.0.6.293\r\nProxy-Authorization: Basic YXM6QWJjMTAw\r\n] [HTTP/1.0 403 Forbidden\r\nServer: squid/2.6.STABLE21\r\nDate: Sat, 20 Sep 2008 08:30:33 GMT\r\nContent-Type: text/html\r\nContent-Length: 983\r\nExpires: Sat, 20 Sep 2008 08:30:33 GMT\r\nX-Squid-Error: ERR_ACCESS_DENIED 0\r\n\r]
Код: Выделить всё
http_access allow comp_bank site_bank
Код: Выделить всё
http_access allow comp_bank
Код: Выделить всё
1221899481.402 3184 bank-rus.local.local TCP_MISS/200 8193 CONNECT 194.67.29.120:443 as DIRECT/194.67.29.120 - [User-Agent: fxApacheSSL/2.0.6.293\r\nProxy-Authorization: Basic YXM6QWJjMTAw\r\n] []
1221899482.437 655 bank-rus.local.local TCP_MISS/200 8193 CONNECT 194.67.29.120:443 as DIRECT/194.67.29.120 - [User-Agent: fxApacheSSL/2.0.6.293\r\nProxy-Authorization: Basic YXM6QWJjMTAw\r\n] []
1221899483.198 429 bank-rus.local.local TCP_MISS/200 5201 CONNECT 194.67.29.120:443 as DIRECT/194.67.29.120 - [User-Agent: fxApacheSSL/2.0.6.293\r\nProxy-Authorization: Basic YXM6QWJjMTAw\r\n] []
1221899483.664 428 bank-rus.local.local TCP_MISS/200 5257 CONNECT 194.67.29.120:443 as DIRECT/194.67.29.120 - [User-Agent: fxApacheSSL/2.0.6.293\r\nProxy-Authorization: Basic YXM6QWJjMTAw\r\n] []
а, да.
IPFW
Код: Выделить всё
01900 fwd 127.0.0.1,8080 tcp from 192.168.0.0/24 to any dst-port 80 via net0
02000 fwd 127.0.0.1,8080 tcp from 192.168.0.0/24 to any dst-port 443 via net0