Hello, OpenBSD current amd64 march 16 snapshot.
I am using relayd as client for encrypted https connections. I would like to make relayd verification of CA. Now I have without verification: web browser encrypted stream -> 1 relayd in server mode -> unencrypted stream -> privoxy and divert using pf -> 2 relayd in client mode -> change destination port using pf -> Internet And it works! I only need to force verification of CA for certificates on 2 relayd, because as far as I understand relayd does not do this by default. Problem is that if I add: tls ca file "/etc/ssl/cert.pem" to http protocol, web browser is not able to reach TLS website. W.B. does not show error, but loads and loads and loads web page, but is not showing webpage.
