On 30/06/19 2:32 pm, Mike Golf wrote:
> Hi All,
>
> I've setup a squid proxy server on my PFSense router, is there any way
> of bypassing HTTPS/SSL filtering for certain LAN IP's.
HTTPS is not normally filtered at all. So for that to be happening
something must be forcing it - all you have to do
Hi All,
I've setup a squid proxy server on my PFSense router, is there any way of
bypassing HTTPS/SSL filtering for certain LAN IP's. I have IP addresses
192.168.1.0-192.168.1.200 allocated through DHCP and I want these devices
to bypass SSL interception but not the standard HTTP proxy.
Since mos
with more debug_options, I got
https://travis-ci.org/juju4/ansible-squid/jobs/552143024
access_custom.log:
29/Jun/2019:12:34:32 + 127.0.0.1 "GET http://www.google.com/
HTTP/1.1" 302 418 "-" "curl/7.58.0" TCP_DENIED:Sh
29/Jun/2019:12:34:32 + 127.0.0.1 "GET
http://localhost/
Hello Amos,
On 29.06.2019 14:13, Amos Jeffries wrote:
That is a good sign. That exact combo is in the set supported by the
breaking server so it is unlikely your Squid or its OpenSSL is
contributing to this particular problem.
quite strange only a few sites don't work, https://www.3bg.at is an
On 29/06/19 10:34 pm, Walter H. wrote:
> On 29.06.2019 10:17, Amos Jeffries wrote:
>> On 29/06/19 3:03 am, Walter H. wrote:
>>> sslproxy_cipher
>>> EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA:EECDH:EDH+AESGCM:EDH:ECDH+AESGCM:ECDH+AES:ECDH:AES:HIGH:MEDIUM:!SSLv2:+SSLv3:!3DES:!RC4:!MD5:!IDEA:!SE
On 29.06.2019 10:17, Amos Jeffries wrote:
On 29/06/19 3:03 am, Walter H. wrote:
sslproxy_cipher
EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA:EECDH:EDH+AESGCM:EDH:ECDH+AESGCM:ECDH+AES:ECDH:AES:HIGH:MEDIUM:!SSLv2:+SSLv3:!3DES:!RC4:!MD5:!IDEA:!SEED:!aNULL:!eNULL:!LOW:!EXP:!DSS:!PSK:!RSA:!SRP
ss
On 29/06/19 3:03 am, Walter H. wrote:
>
> sslproxy_cipher
> EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA:EECDH:EDH+AESGCM:EDH:ECDH+AESGCM:ECDH+AES:ECDH:AES:HIGH:MEDIUM:!SSLv2:+SSLv3:!3DES:!RC4:!MD5:!IDEA:!SEED:!aNULL:!eNULL:!LOW:!EXP:!DSS:!PSK:!RSA:!SRP
> sslproxy_options NO_SSLv2 NO_SSLv3 TLSv
