Time for action – denying miss_access to neighbors

To force other proxy servers to use our proxy server as a sibling proxy server, we have an access rule miss_access . Let's say we have two neighbor proxy servers, namely, 192.0.2.25 and 198.51.100.25, in our network. Now, we don't mind if 192.0.2.25 uses our proxy server as a parent proxy server, but we don't want to allow 198.51.100.25 to fetch MISS(s) via our proxy server. So, we can have the following configuration:

acl good_neighbour src 192.0.2.25
acl bad_neighbour src 198.51.100.25
miss_access allow good_neighbour # This line is not needed. Why?
miss_access deny bad_neighbour
miss_access allow all

The default behavior is to allow all proxy servers to fetch MISS(s) via our proxy server. In ...

Get Squid Proxy Server 3.1 Beginner's Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Squid Proxy Server 3.1 Beginner's Guide by Kulbir Saini

Time for action – denying miss_access to neighbors

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly