From owner-freebsd-net Thu Dec 13 15:11:49 2001 Delivered-To: freebsd-net@freebsd.org Received: from fepC.post.tele.dk (fepC.post.tele.dk [195.41.46.147]) by hub.freebsd.org (Postfix) with ESMTP id D865837B416 for ; Thu, 13 Dec 2001 15:11:46 -0800 (PST) Received: from arnold.neland.dk ([62.243.77.140]) by fepC.post.tele.dk (InterMail vM.4.01.03.23 201-229-121-123-20010418) with ESMTP id <20011213231145.NLOL11568.fepC.post.tele.dk@arnold.neland.dk>; Fri, 14 Dec 2001 00:11:45 +0100 Received: from gina ([192.168.5.109]) by arnold.neland.dk (8.11.6/8.11.6) with SMTP id fBDNDCQ68643; Fri, 14 Dec 2001 00:13:13 +0100 (CET) (envelope-from leifn@neland.dk) Message-ID: <00be01c1842b$683be360$6d05a8c0@neland.dk> From: "Leif Neland" To: , "Tom" References: <5.1.0.14.2.20011213102454.0280ee78@pop3.paradise.net.nz> Subject: Re: 1 IP - 1 Firewall - 2 Webservers Date: Fri, 14 Dec 2001 00:10:48 +0100 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I've got a different solution: Use squid for logging and acl. The squid access.log contains the client adress and the requested url, just like the apache log. And squid can also grant and deny requests based on ip and url. You can also make access to certain urls passwordguarded from the outside and passwordless from the inside. The only thing which could be difficult is to have password guarded access from certain outside addresses and passwordless from other outside addresses. But that doesn't happen often, I believe. Leif To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message