TAG NAME never_direct

Description With never_direct you can use ACL elements to specify requests which should NEVER be forwarded directly to origin
servers
Build Option
 Default
Usage
 never_direct allow|deny [!] aclname …
Default
 none
Synopsis
never_direct is the opposite of always_direct. By default all requests are not forwarded directly to the origin server.

The following example explains this tag.

Arguments

allow/deny Deny or allow direct access
aclname
 Access list on which this should act

Example(s)
To force the use of a proxy for all requests, except those in your local domain use something like
acl local-servers dstdomain .foo.net
acl all src 0.0.0.0/0.0.0.0
never_direct deny local-servers
never_direct allow all

or if Squid is inside a firewall and there is local intranet
servers inside the firewall then use something like:

acl local-intranet dstdomain .foo.net
acl local-external dstdomain external.foo.net
always_direct deny local-external
always_direct allow local-intranet
never_direct allow all