I've created a few GROUP ACL for example there is ALLOWED which has separate ips in the 192.168.1.0/24 subnet and then I have DENIED acl which just has the subnet 192.168.0.1/24 in the client source list.
So far everything was working until today i noticed some of the ips from the DENIED acl was using the default acl, just one of the ip of the few ips that's been doing this is 192.168.1.23, which should have been in DENIED ACL.
192.168.1.23 is not in the ALLOWED acl so it should so it should have been automatically in the DENIED acl but for some reason it's using the default acl (the common tab in squidguard).
The order of the rules are ALLOWED --DENIED
Is this a bug?