[squid-users] Squid 3.5.24 - Url_rewrite with ssl_bump in Transparent Mode

Hi, When I exclude some sites (like banks) with ssl_bump peek/splice that works well, Got a new problem that sites (that I exclude) can not be blocked using Url_Rewrite. I use Url_rewrite to block sites based on User IP and all all other sites(no in exclude list) it working very well. How

Re: [squid-users] Proxyfy spice protocol behind nat

Hi, > > In my environment I have deployed two KVM hypervisors. I'd like to deploy > in my DMZ a squid proxy host in order to hide hypervisor IPs and Ports from > the clients. Why? What's the problem with the clients knowing the true values? --> I want to publis VDI Desktops through Internet.

Re: [squid-users] Proxyfy spice protocol behind nat

On Sunday 19 February 2017 at 19:05:57, Oscar Segarra wrote: > Hi, > > In my environment I have deployed two KVM hypervisors. I'd like to deploy > in my DMZ a squid proxy host in order to hide hypervisor IPs and Ports from > the clients. Why? What's the problem with the clients knowing the

Re: [squid-users] On using Parent Proxies

Side note... no_cache is not flagged as an error in 3.5.24. If it is misconfigured you will get a notice though. It seems to be treated as a legit alias. Senor On 2/7/2017 20:40, Amos Jeffries wrote: > On 8/02/2017 12:50 a.m., Jude Karuhanga wrote: >> Hello there, >> >> >> Thanks for the reply.

[squid-users] Proxyfy spice protocol behind nat

Hi, In my environment I have deployed two KVM hypervisors. I'd like tu deploy in my DMZ a squid proxy host in order to hide hypervisor IPs and Ports from the clients. Each virtual machine has a unique port but VMs can run on any hypervisor. Is ist possible to achieve this with squid? Is there

Re: [squid-users] Squid 3.5.24 - Exclude https sites from ssl_bump in Transparent Mode

What is the content of: /etc/squid/exfiles.conf And did you tried using: ssl::server_name_regex -i "/etc/squid/doms.nobump" /etc/squid/doms.nobump: ##START OF FILE update\.microsoft\.com$ update\.microsoft\.com\.akadns\.net$ v10\.vortex\-win\.data\.microsoft.com$

[squid-users] Squid 3.5.24 - Exclude https sites from ssl_bump in Transparent Mode

Hi, When I try to exclude some sites like Banks (or even gmail.com) for users using squid in TRANSPARENT Mode, I get in Squid log : "SECURITY ALERT: On URL..." (all servers and users using same dns, so this not an issue). My config file regard to this: acl step1 at_step SslBump1 acl

Re: [squid-users] WARNING: Ignoring cache entry due to a SIZE MISMATCH

On 18/02/2017 3:18 a.m., Heiler Bemerguy wrote: > > Em 17/02/2017 09:44, Amos Jeffries escreveu: >> On 16/02/2017 10:40 a.m., Heiler Bemerguy wrote: >>> Is it normal, on every restart? >>> >> Well, this is a check that is only performed on restart. So in a way it >> is "normal" that it occurs on