summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--hosts/jenkins-test-vm/etc/squid3/squid.conf6
1 files changed, 4 insertions, 2 deletions
diff --git a/hosts/jenkins-test-vm/etc/squid3/squid.conf b/hosts/jenkins-test-vm/etc/squid3/squid.conf
index 515d5378..27b15593 100644
--- a/hosts/jenkins-test-vm/etc/squid3/squid.conf
+++ b/hosts/jenkins-test-vm/etc/squid3/squid.conf
@@ -697,7 +697,7 @@
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
-#acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
+acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
#acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
#acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
#acl localnet src fc00::/7 # RFC 4193 local private network range
@@ -714,6 +714,7 @@ acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
+acl VNC_ports port 5900-5999 # VNC ports
acl CONNECT method CONNECT
# TAG: follow_x_forwarded_for
@@ -822,6 +823,7 @@ http_access deny manager
# Deny requests to certain unsafe ports
http_access deny !Safe_ports
+http_access allow CONNECT VNC_ports
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
@@ -837,7 +839,7 @@ http_access deny CONNECT !SSL_ports
# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
-#http_access allow localnet
+http_access allow localnet
http_access allow localhost
# And finally deny all other access to this proxy