|
|
发表于 2006-11-14 08:54:47
|
显示全部楼层
Tag Name never_direct
Usage never_direct allow|deny [!]aclname ...
Description
never_direct is the opposite of always_direct. Please read the description for always_direct if you have not already.
With 'never_direct' you can use ACL elements to specify requests, which should NEVER be forwarded directly to origin servers
When always_direct and never_direct are deny (By default), Squid selects based on the request type and a number of other factors if a parent should be used or not, and if a parent could not be reached it will always fallback on direct.
If always_direct is allow then Squid will always go direct to the source without considering any peers.
If never_direct is allow then Squid will never attempt to go direct to the source. Instead it tries very hard to find a parent to send the request to. If no parent can be found then an error is returned. For Further reference on never_direct, please click here.
Default never_direct is by default deny.
Example
For example, to force the use of a proxy for all requests, except those in your local domain use something like:
acl local-servers dstdomain foo.net
acl all src 0.0.0.0/0.0.0.0
never_direct deny local-servers
never_direct allow all
or if squid is inside a firewall and there are local intranet servers inside the firewall then use something like:
acl local-intranet dstdomain .foo.net
acl local-external dstdomain .external.foo.net
always_direct deny local-external
always_direct allow local-intranet
never_direct allow all
Caution
It will be better to understand always_direct before enabling this tag
原来官网上有,只是我们没仔细看,不过默认就是deny呀? |
|
IP卡
狗仔卡
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
显身卡
楼主