On 24/10/2015 5:41 p.m., Alex Samad wrote:
> On 24 October 2015 at 15:01, Amos Jeffries wrote:
>> Set the cache_peer sslcafile= option with the PEM file containing the CA
>> that was used to sign the office.abc.com server certificate.
>
> Do i need to do that if the signing CA is part of the OS ro
On 24 October 2015 at 15:01, Amos Jeffries wrote:
> Set the cache_peer sslcafile= option with the PEM file containing the CA
> that was used to sign the office.abc.com server certificate.
Do i need to do that if the signing CA is part of the OS root bundle ?
__
On 24/10/2015 2:22 p.m., Alex Samad wrote:
> Let me re ask, as I have miss understood what sslcert is used for.
>
>
> if cache_peer points to 127.0.0.1 433 and the cert coming back says
> office.abc.com with no subj alt for 127.0.0.1 will squid complain ? if
> so how can I get around without usin
Let me re ask, as I have miss understood what sslcert is used for.
if cache_peer points to 127.0.0.1 433 and the cert coming back says
office.abc.com with no subj alt for 127.0.0.1 will squid complain ? if
so how can I get around without using the DONT_VERIFY option
On 24 October 2015 at 11:51,
Hi
I have squid on centos 6. the version that comes with it unfortunately.
I have configured it to be a reverse proxy to our exchange box.
so it answers on office.abc.com
now I have 2 cache peers setup
10.1.1.1. the exchange box << all the predefined URIs go here
127.0.0.1 443 the rest go here.
