Здравейте Линуксчии,
Инсталирал съм Squid 3.0/Stable 8 като прозрачно прокси на FreeBSD 7.1 и всичко си работи нормално с изключение на 1 проблем: "обикновените" потребители не могат да теглят ISO, EXE както и част от файловете на NOD32 - update.ver и някои други файлове/засега тези съм забелязал/. Ето и един ред от access.log-a na squid:
192.168.11.22 TCP_DENIED_REPLY/403 1343 GET
http://u21.eset.com/eset_eval/update.ver - DIRECT/89.202.157.131 text/html
Опитах какви ли не варианти да ги допусна да теглят файлове освен тези които съм забранил, но без успех. Някой има ли идея какво съм пропуснал при конфигурирането на конф. файл на сепията. Ето го и него:
http_port 3129 transparent
#Don't make caching just web content filtering
acl localhost src 127.0.0.1/255.255.255.255
no_cache deny all
cache_dir null /tmp
acl special src "/usr/local/etc/squid/special"
acl blockfiles urlpath_regex -i "/usr/local/etc/squid/block_files"
acl blockedurls url_regex -i "/usr/local/etc/squid/badurls"
acl download method GET
acl Our_LANs src 192.168.11.0/255.255.255.0
acl Our_LANs src 192.168.12.0/255.255.255.0
acl Our_LANs src 192.168.121.0/255.255.255.0
#Deny all blocked extension except for "special" IP addresses
deny_info ERR_BLOCKED_FILES blockfiles
http_access deny !special blockfiles download
http_access deny !special blockfiles
http_access deny !special blockedurls
#http_access allow special blockfiles
#allow localhost and everything else
http_access allow localhost
http_access allow Our_LANs
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
coredump_dir /var/cache/squid
#Block streaming audio/video
acl x-type req_mime_type -i ^application/octet-stream$
acl x-type req_mime_type -i application/octet-stream
acl x-type req_mime_type -i ^application/x-mplayer2$
acl x-type req_mime_type -i application/x-mplayer2
acl x-type req_mime_type -i ^application/x-oleobject$
acl x-type req_mime_type -i application/x-oleobject
acl x-type req_mime_type -i application/x-pncmd
acl x-type req_mime_type -i ^video/x-ms-asf$
acl x-type2 rep_mime_type -i ^application/octet-stream$
acl x-type2 rep_mime_type -i application/octet-stream
acl x-type2 rep_mime_type -i ^application/x-mplayer2$
acl x-type2 rep_mime_type -i application/x-mplayer2
acl x-type2 rep_mime_type -i ^application/x-oleobject$
acl x-type2 rep_mime_type -i application/x-oleobject
acl x-type2 rep_mime_type -i application/x-pncmd
acl x-type2 rep_mime_type -i ^video/x-ms-asf$
http_access deny x-type all
http_reply_access deny x-type all
http_access deny x-type2 all
http_reply_access deny x-type2 all