Block some users with Bind9

Eliezer Croitoru eliezer at
Sat Jul 28 23:14:55 UTC 2012

On 7/26/2012 2:22 AM, Emiliano Vazquez wrote:
>> i suggest for you to first implement the basic allow\deny acls in squid
>> for the intercepted traffic and later see what is the effect.
>> Regards,
>> Eliezer
> At the moment if i send 443tcp traficc to squid i got and "unknow
> request" on access.log.
the basic use of squid is to not do SSL_BUMP and you must configure it 
to properly work.
you must use some "https_port ..." bal bla to many to remember.
if you do have control all over the computers in the network deploying 
the root ca certificate will be simple.


> Thanks for your time Eliezer
> Best regards.

Eliezer Croitoru
IT consulting for Nonprofit organizations
eliezer <at>

More information about the bind-users mailing list