So is a bug for 500 or a bad configuration?
I have also tried this setup and seams to "fix" the tcp_tunnel/500
# Squid 5.x branch
# SSL used for port ID 1, :3128 on
# Patch 2020 - 08 - 03 SquidMikrotikEnabled = 0
# SSL Proxy options Proxy version:5.7 [146]
sslcrtd_program /lib/squid3/security_fil
On 13/01/2023 10:04 am, andre.bolinhas wrote:
Forgot to attach the config file
root@proxy01:~# cat /etc/squid3/ssl.conf
# Squid 5.x branch
# SSL used for port ID 1, :3128 on
# Patch 2020 - 08 - 03 SquidMikrotikEnabled = 0
# SSL Proxy options Proxy version:5.7 [146]
sslcrtd_program /lib/squid3/s
Forgot to attach the config file
root@proxy01:~# cat /etc/squid3/ssl.conf
# Squid 5.x branch
# SSL used for port ID 1, :3128 on
# Patch 2020 - 08 - 03 SquidMikrotikEnabled = 0
# SSL Proxy options Proxy version:5.7 [146]
sslcrtd_program /lib/squid3/security_file_certgen -s
/media/squidtmpfs/ssl/s
Hi Amos
Thansk for your quick reply, I have done it as example but now, even the
internet surf is ok for all website I get to many TCP_TUNNEL/500 on access.log
for all websites that we are not decrypting
1673531433.924 31315 192.168.60.30 TCP_TUNNEL/500 4096 CONNECT sapo.pt:443 -
HIER_DIRECT
hi all,
before i compile squid with ssl bump c-icap, squidclamav i want to get the
pre req packages first, let me know if i have missed any out
#install epel repositry
dnf install -y epel-release
#install squid packages
dnf install -y gcc-c++ gcc g++ binutils make sudo wget tar automake
autoconf
On 13/01/2023 6:37 am, andre.bolinhas wrote:
Hi
It’s possible configure squid to intercept ssl traffic just for a
group of domain and leave the all of rest out of ssl interceptation?
Yes, with one caveat: that Squid is able to identify the domain/server
to make the decision.
If so, can
Hi
It's possible configure squid to intercept ssl traffic just for a group of
domain and leave the all of rest out of ssl interceptation?
If so, can you send me an example of config?
I have try search for this on Google and in forums but I just find config to
intercept all.
Best regards
___
On 1/12/23 11:09, robert k Wild wrote:
I've sorted it, I had to put quotes around my file path to the URL whitelist
Glad you found the problem! I hope that somebody adds a warning about
suspected filenames in ACL parameter values.
Alex.
On Thu, 12 Jan 2023, 15:22 robert k Wild wrote:
acl
I've sorted it, I had to put quotes around my file path to the URL whitelist
On Thu, 12 Jan 2023, 15:22 robert k Wild, wrote:
> hi all,
>
> i have no idea why but my acl for url whitelist doesnt work anymore
>
> this is the output of my parse
>
> /usr/local/squid/sbin/squid -k parse
> 2023/01/12
hi all,
i have no idea why but my acl for url whitelist doesnt work anymore
this is the output of my parse
/usr/local/squid/sbin/squid -k parse
2023/01/12 15:10:56| Startup: Initializing Authentication Schemes ...
2023/01/12 15:10:56| Startup: Initialized Authentication Scheme 'basic'
2023/01/12
10 matches
Mail list logo