Whitelist
-
Hello, before upgrading to 4.1, exceptions were made with *, such as: * .microsoft.com. Now this no longer works (the data is written in the ACL under the White List).
Please help as my systems are not being updated.
-
The proxy config snippet generated from the whitelist uses the acltype dstdom_regex
acl aclname dstdom_regex [-n] [-i] .foo.com ...
# regex matching server [fast]
#
# For dstdomain and dstdom_regex a reverse lookup is tried if a IP
# based URL is used and no match is found. The name "none" is used
# if the reverse lookup fails.Even if it used dstdomain before, the asterisk character was invalid syntax and possibly ignored by the parser.
Short answer:
You have to adapt your whitelist or patch the code.For adapting your whitelist:
The dot-Character has a special meaning in regex. If you want to include the '.' as in '.microsoft.com', you have to escape it: '.microsoft.com'
(and: squid knows the end of the domain name, you don't have to append the '.' in the end)The correct migration would be:
*.microsoft.com. → .microsoft.com