[Squid] squid tip

In access contorl list

acl all src  0.0.0.0 / 0.0.0.0

acl  target dst  192.168.0.1

http_access deny target
http_access allow all

it mean allow all user clinet to access internet but all user deny to access the 192.168.0.1

but

http_access allow all
http_access deny target

mean all user clinet to access internet not block any site.

if want to deny the access for a src group (i.e. clinet user), it need to indicate "http_access deny" before "http_access allow".