From 49e9a22250ab313ddce35cb2c1a8896115eae86e Mon Sep 17 00:00:00 2001
From: "jeremy.thomas" <thomasjeremy1220@gmail.com>
Date: Mon, 7 Apr 2025 09:38:30 +0200
Subject: [PATCH] Mise en place d'un filtrage discriminant

---
 sisr1/tp05-Installation_proxy/squid/squid.conf | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/sisr1/tp05-Installation_proxy/squid/squid.conf b/sisr1/tp05-Installation_proxy/squid/squid.conf
index eb98afa..4fbd72b 100644
--- a/sisr1/tp05-Installation_proxy/squid/squid.conf
+++ b/sisr1/tp05-Installation_proxy/squid/squid.conf
@@ -1352,11 +1352,14 @@ acl Safe_ports port 488		# gss-http
 acl Safe_ports port 591		# filemaker
 acl Safe_ports port 777		# multiling http
 
+# IP interdites:
+acl ip_restreintes src 172.16.0.5-172.16.0.99
+
 # Ban des mots clés:
-acl mot_interdis url_regex -i chatgpt twitch
+acl mots_interdis url_regex -i youtube discord twitch facebook instagram snapchat chatgpt
 
 # Ban des liens:
-acl site_bloque dstdomain .youtube.com .facebook.com .chatgpt.com .twitch.tv
+# acl sites_bloque dstdomain .youtube.com .facebook.com .chatgpt.com .twitch.tv
 
 #  TAG: proxy_protocol_access
 #	Determine which client proxies can be trusted to provide correct
@@ -1555,8 +1558,8 @@ include /etc/squid/conf.d/*.conf
 # Example rule allowing access from your local networks.
 # Adapt localnet in the ACL section to list your (internal) IP networks
 # from where browsing should be allowed
-http_access deny mot_interdis
-http_access deny site_bloque
+http_access deny ip_restreintes mots_interdis
+# http_access deny sites_bloque
 http_access allow localnet
 http_access allow localhost