Re: [squid-users] deny_info and CONNECT for https request gives SSL error

On 18/10/18 1:08 AM, Amish wrote: > On 17/10/18 10:37 AM, Amos Jeffries wrote: >> On 17/10/18 3:15 PM, Amish wrote: >>> My proposal for would be to add "-n" (nobump) option to deny_info. >>> >>> If -n is specified then squid will send 307 directly instead of 200. >>> >>> Case 1) >>> deny_info http:

Re: [squid-users] SQUID Proxy - SSL Certificate error

On 18/10/18 2:31 AM, Vayalpadu, Vedavyas wrote: > Hi All, > > We have an existing SSL certificate for a WebShop URL. It has an > external IP Natted to a Load Balancer and has 2 reverse-squid proxies > configured for load balancing. > >   > > Now we need to on-board a new URL with same external I

Re: [squid-users] deny_info and CONNECT for https request gives SSL error

On 17/10/18 8:28 PM, Alex Rousskov wrote: Very true, but based on my interpretation of browser makers' feedback on the HTTP WG mailing list, I doubt that will happen in the foreseeable future: Adding a proxy "security context" (in addition to the existing "insecure" and "origin" contexts) is not

Re: [squid-users] deny_info and CONNECT for https request gives SSL error

On 10/16/2018 08:15 PM, Amish wrote: > http_port 8080 ssl-bump ... > http_access deny ... > ssl_bump splice all > In this case one would expect that squid would not bump the connection > and return with 307 instead of 200. FWIW, I do not think "one would expect" can be the driving argument for d

Re: [squid-users] squid clientside_mark problem

HiTank you for your reply.I compiled Squid 4 with these Options and it works!:./configure \ --enable-linux-netfilter \ --with-netfilter-conntrack Tanx. On Wednesday, October 17, 2018 6:31 AM, Amos Jeffries wrote: On 16/10/18 8:06 PM, morteza omidian wrote: > Hi > Witch option

[squid-users] SQUID Proxy - SSL Certificate error

Hi All, We have an existing SSL certificate for a WebShop URL. It has an external IP Natted to a Load Balancer and has 2 reverse-squid proxies configured for load balancing. Now we need to on-board a new URL with same external IP, Same Load Balancers and r-Squid proxy servers ? Is it possible.

Re: [squid-users] deny_info and CONNECT for https request gives SSL error

On 17/10/18 10:37 AM, Amos Jeffries wrote: On 17/10/18 3:15 PM, Amish wrote: My proposal for would be to add "-n" (nobump) option to deny_info. If -n is specified then squid will send 307 directly instead of 200. Case 1) deny_info http://192.168.1.1/blocked.html denyit Return with 200 and bum