Home / server / Questions / 295019
Accepted
Witek
Asked: 2011-07-29 05:16:54 +0800 CST

How to configure Squid with for authentication but skip it for local requests?

  • 772

My Squid HTTP proxy works fine with authentication. Here is the config:

auth_param basic program /usr/lib/squid/pam_auth
auth_param basic children 5
auth_param basic realm test-proxy
auth_param basic credentialsttl 4 hours
auth_param basic casesensitive off

But I want that my locally running applications which use the proxy don't have to authenticate. How to disable authentication for requests from localhost?

authentication squid http-proxy

3 Answers

  1. Best Answer

    Something like

    acl localhost src 127.0.0.1
acl auth proxy_auth REQUIRED
http_access allow localhost auth

    should do the trick.

    • 4

  2. As said long time ago, that will not work for most (modern) versions.

    acl localhost src 127.0.0.1
http_access allow localhost
acl auth proxy_auth REQUIRED
http_access allow auth

    The proxy_auth will catch every src/group not allowed, so, the config seems to need to be setup step-by-step.

    Create group, allow or not, Create another group, allow or not, etc.

    In modern squid3 releases, internet, localhost and all groups are builtin and will make you became crazy. Every time that a config fails, use squid3 -d 10 to know exactly what's the problem.

    • 3

  3. Better still - don't proxy for local requests - this is easily set up in browser config, group policy, proxy.pac etc. - there is generally no real case for local proxying.

    • 0