tags:

views:

1215

answers:

2
Q: 

How does this Squid regex filter rule work?

On our Squid server, the admin has put on a new regex rule:

^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+

I know that it stands for IP address, but it allows all URLs to go through, only pinging external address has stopped. Also tunneling software like UltraSurf have stopped connecting to the server. Skype also is not getting connected.

Please explain how this works! Thanks.

+1  A: 

I am not sure about your particular issue with the Squid server, but here is what the regex does:

[0-9]+ means "any digit one or more times", so it is matching a string that begins with a digit one or more times, followed by a dot, followed by a digit one or more times, followed by a dot, followed by a digit one or more times, followed by dot, followed by a digit one or more times.. then anything else. In essence, it is matching any IP address, so it wouldn't filter anything out. It will also match things that are not even valid IP addresses like 123456.123456.123456.123456 or 1.1.1.1 or 125.252.252.252asdf.

Paolo Bergantino  2009-03-10 06:36:56
It does not match the end of the string, though. There could be arbitrary data after the ip wannabe
soulmerge  2009-03-10 06:40:01
Oh, crap, I thought I saw the $
Paolo Bergantino  2009-03-10 06:43:17
I know that its for IP since its a rule on Squid. But how does it work? Why doesnt it block URLs?
Pushkar  2009-03-10 07:04:09
The regex matches ANYTHING that looks like an IP address. So I don't see why it would BLOCK anything when it MATCHES everything. I am not sure how the filters work in Squid but if its supposed to match IPs to ALLOW then this would let everything through.
Paolo Bergantino  2009-03-10 16:20:35
A: 

Paolo has explained the meaning of the Regex well! As mentioned, the Regex currently being used is too weak (or should I say too restrictive!)

If you want a much better Regex to match IP addresses, see this page.

Cerebrus  2009-03-10 07:04:48

related questions

Passing a commented, multi-line (freespace) regex to preg_match
My regex is matching too much. How do I make it stop?
Using Regex to generate Strings rather than match them
Complexity of Regex substitution
What is the most brilliant regex you've ever used?
RFC calculation in Java need help with algorithm
What did I do wrong here? [Javascript Regex]
How do you use back-references to PCREs in PHP?
Need help writing a regex statement. [PHP]
Regex and unicode
Python Regular Expressions
Question about specific regular expression
Pre-built regular expression patterns or Regex Libraries?
Parsing attributes with regex in Perl
Regex Rejecting matches because of Instr
How do I bind a regular expression to a key combination in emacs?
How do you retrieve selected text using Regex in C#?
Remove Quotes and Commas from a String in MySQL
Regular expression for parsing links from a webpage?
What are good regular expressions?
Why is this regular expression faster?
Learning Regular Expressions
How far should one take e-mail address validation?
How can I get at the matches when using preg_replace in PHP?
Regex: To pull out a sub-string between two tags in a string