Re: [squid-users] Secure acceleration
You miss understood me, I know all communication from the squid to the backend is unencrypted. What I want is for squid to log weather to client web browser connected to the http port or the https port of squid this information to be sent to the redirector. Ben On 05/12/05, Matus UHLAR - fantomas <[EMAIL PROTECTED]> wrote: > On 05.12 15:08, Ben Sagal wrote: > > I have a squid server, I is currently setup to accelerates both normal > > and ssl pages. I have a redirector running and deepening on which page is > > requested it rewrites the address for the relevant server. > > > > I would like the redirector to also be able to differentiate between > > http and https pages, ie. the redirector could send > > http://mydomain.com/index.html and https://mydomain.com/index.html to > > different pages/servers. Is there any way to adjust squid sop that > > the URL that is sent to the redirector (and stored in the logs) > > reflects if the client connected to the standard port of the ssl port. > > don't you trust the network between squid and servers? Note that security of > connections is already lower because squid can see the content. Also server > won't see real clients' sertificates... > > However, for this kind of setup you need squid-3.0, or the squid SSL patch - > squid 2.5 can't behave as https client. > > -- > Matus UHLAR - fantomas, [EMAIL PROTECTED] ; http://www.fantomas.sk/ > Warning: I wish NOT to receive e-mail advertising to this address. > Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. > Remember half the people you know are below average. >
[squid-users] Secure acceleration
I have a squid server, I is currently setup to accelerates both normal and ssl pages. I have a redirector running and deepening on which page is requested it rewrites the address for the relevant server. I would like the redirector to also be able to differentiate between http and https pages, ie. the redirector could send http://mydomain.com/index.html and https://mydomain.com/index.html to different pages/servers. Is there any way to adjust squid sop that the URL that is sent to the redirector (and stored in the logs) reflects if the client connected to the standard port of the ssl port. Thank You Ben
[squid-users] Squid port
I have squid listening of multiople ports, is there a way to pass which of these ports the client connected on to an external acl? Ben
[squid-users] pass mac address to external acl
Is the a way to pass the mac address of the client to an external acl. Ben
Re: [squid-users] squid https login error
The https port is not related to https proxying and should probably be removed. To proxy https, in your browser, set the https proxy port to 3128 (or whatever you have set the standard http port to). Ben On 07/10/05, Ibrahim Calisir <[EMAIL PROTECTED]> wrote: > thank you, for your quick reply.. > > However there is no line that relate to https connection that I write, > except the default acl rules as: > > acl Safe_ports port 443 563 # https, snews > http_access deny !Safe_ports > > acl SSL_ports port 443 563 > http_access deny CONNECT !SSL_ports > > I do not have a firewall rule yet, and I can connect https site from > proxy machine with firefox. > > I check with Mozilla, Netscape and IE and all of them lost their > connection with web sites as I addressed https port of my proxy. > > not: I assigned 443 as https port of proxy, and nothing changed. > > Yours, > Ibrahim Calisir > METU > > Jakob Curdes wrote: > > Ibrahim Calisir schrieb: > > > >> Hi > >> > >> I am not very good in squid. I configured squid-2.5.STABLE11 with LDAP > >> and SSL enabled. Connecitons to https port had "page cannot be > >> displayed" error message in IE6, however connections to http port had no > >> problem and asks username and password. I did not understad why https > >> port connections give such error. > >> > >> not: configuration string: > >> ./configure --enable-ssl --with-openssl > >> --enable-digest-auth-helpers=password --enable-basic-auth-helpers=LDAP > >> > > The error message from IE 6 does not really help. You will have to find > > out why you get the error. > > How are your acl ant http_access configuration lines ? Can you browse > > https sites from the proxy machine itself without using a proxy, i.e. > > are you sure your firewall permits https connections out ? > > > > Yours, > > Jakob Curdes > >
Re: AW: [squid-users] Runing 2 squids
Thank you, I have now got both running (with differnt cache dirs) Ben On 26/09/05, dirk.duenkelmann <[EMAIL PROTECTED]> wrote: > Sorry Ben, > > Neil is right: You need different cache directories in the second > configfile, too. > > Dirk > > > > -Original Message- > > From: Neil A. Hillard [mailto:[EMAIL PROTECTED] > > Sent: Monday, September 26, 2005 2:05 PM > > To: squid-users@squid-cache.org > > Subject: Re: AW: [squid-users] Runing 2 squids > > > > Hi, > > > > dirk.duenkelmann wrote: > > >> Is it possible to run two copies of squid concurrently (same > > >> executable > > >> + cache etc, just different config files)? > > > Yes, it is: > > > > > > squid -f configfile > > > > To answer your original question - no it's not. You can run > > multiple instances with different configs but you must ensure > > that pid_filename is different for each instance and that > > they have different cache_dir settings. They _cannot_ share > > a cache_dir. > > > > HTH, > > > > > > Neil. > > > > -- > > Neil Hillard[EMAIL PROTECTED] > > Westland Helicopters Ltd. http://www.whl.co.uk/ > > > > Disclaimer: This message does not necessarily reflect the > > views of Westland Helicopters Ltd. > > >
Re: [squid-users] Runing 2 squids
I have tried this but it complains that there is already a copy of squid running On 26/09/05, dirk.duenkelmann <[EMAIL PROTECTED]> wrote: > > Yes, it is: > > squid -f configfile > > > > Dirk > > -Ursprüngliche Nachricht- > Von: Ben Sagal [mailto:[EMAIL PROTECTED] > Gesendet: Montag, 26. September 2005 13:26 > An: squid-users@squid-cache.org > Betreff: [squid-users] Runing 2 squids > > Is it possible to run two copies of squid concurrently (same executable + > cache etc, just different config files)? > > Ben >
[squid-users] Runing 2 squids
Is it possible to run two copies of squid concurrently (same executable + cache etc, just different config files)? Ben
