summaryrefslogtreecommitdiffstats
path: root/hosts/jenkins-test-vm/etc/squid3
diff options
context:
space:
mode:
authorPhilip Hands <phil@hands.com>2016-05-11 17:25:01 +0200
committerPhilip Hands <phil@hands.com>2016-05-11 17:25:01 +0200
commit6e3899e592d50701b497474c044d912f40233fcc (patch)
tree5497a636de9b4e845dd0f4e9771152f0033e628d /hosts/jenkins-test-vm/etc/squid3
parent88d376c9b7d2e52dee57fc67b2cbd07422a4e5bd (diff)
downloadjenkins.debian.net-6e3899e592d50701b497474c044d912f40233fcc.tar.xz
allow proxy access -- the VNC ports thing is odd though
It seems that the virt-viewer session gets tangled up with the proxy, such that sikuli cannot see the screen without this VNC_ports access allowed.
Diffstat (limited to 'hosts/jenkins-test-vm/etc/squid3')
-rw-r--r--hosts/jenkins-test-vm/etc/squid3/squid.conf6
1 files changed, 4 insertions, 2 deletions
diff --git a/hosts/jenkins-test-vm/etc/squid3/squid.conf b/hosts/jenkins-test-vm/etc/squid3/squid.conf
index 515d5378..27b15593 100644
--- a/hosts/jenkins-test-vm/etc/squid3/squid.conf
+++ b/hosts/jenkins-test-vm/etc/squid3/squid.conf
@@ -697,7 +697,7 @@
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
-#acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
+acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
#acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
#acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
#acl localnet src fc00::/7 # RFC 4193 local private network range
@@ -714,6 +714,7 @@ acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
+acl VNC_ports port 5900-5999 # VNC ports
acl CONNECT method CONNECT
# TAG: follow_x_forwarded_for
@@ -822,6 +823,7 @@ http_access deny manager
# Deny requests to certain unsafe ports
http_access deny !Safe_ports
+http_access allow CONNECT VNC_ports
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
@@ -837,7 +839,7 @@ http_access deny CONNECT !SSL_ports
# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
-#http_access allow localnet
+http_access allow localnet
http_access allow localhost
# And finally deny all other access to this proxy