From 2590d04ff2398cac80817f5f39ad4d1efe20ea67 Mon Sep 17 00:00:00 2001
From: Olivier Blin <oblin@mandriva.com>
Date: Thu, 3 Apr 2008 07:54:26 +0000
Subject: allow more local networks in squid (from squid default conf)

---
 lib/network/squid.pm | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'lib/network/squid.pm')

diff --git a/lib/network/squid.pm b/lib/network/squid.pm
index f045b14..b92589f 100644
--- a/lib/network/squid.pm
+++ b/lib/network/squid.pm
@@ -35,6 +35,9 @@ acl all src 0.0.0.0/0.0.0.0
 acl manager proto cache_object
 acl localhost src 127.0.0.1/255.255.255.255
 acl to_localhost dst 127.0.0.0/8
+acl localnet src 10.0.0.0/8     # RFC1918 possible internal network
+acl localnet src 172.16.0.0/12  # RFC1918 possible internal network
+acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
 acl SSL_ports port 443 563
 acl Safe_ports port 80          # http
 acl Safe_ports port 21          # ftp
@@ -54,6 +57,7 @@ http_access deny CONNECT !SSL_ports
 http_access deny to_localhost
 acl mynetwork src $intf->{NETWORK}/$intf->{NETMASK}
 http_access allow mynetwork
+http_access allow localnet
 http_access allow localhost
 http_reply_access allow all
 icp_access allow all
-- 
cgit v1.2.1