Re: [squid-users] Reverse proxy: destination hostname different from real hostname

Dear Amos and all, thanks for your response, but I need your last help please. I can't understand at all what you say, so I show you the main lines of squid.conf: https_port 443 cert=/etc/squid3/ssl/server.crt key=/etc/squid3/ssl/server.key defaultsite=server.company.com vhost cache_peer 1.1.1.1

Re: [squid-users] Reverse proxy: destination hostname different from real hostname

On 30/05/2014 1:35 p.m., Sipos Ferenc wrote: > Hi, > > url_rewrite is good solution, too. > > > Regards, > Sipi > > On 2014-05-29 22:15, Sipos Ferenc wrote: >> Hi, >> >> I beleive you are looking for this: >> http://www.squid-cache.org/Doc/config/request_header_replace/ >> (replace the host hea

Re: [squid-users] Reverse mode: destination hostname change

On 30/05/2014 3:56 a.m., Roberto Carna wrote: > Dear, I've implemented a Squid reverse proxy that works OK. > > I have several HTTP and HTTPS sites setup in reverse mode, but now one > of them has to change the hostname from server.company.com to > mail.company.com. > > If I define an alias in ou

Re: [squid-users] Reverse proxy: destination hostname different from real hostname

Hi, url_rewrite is good solution, too. Regards, Sipi On 2014-05-29 22:15, Sipos Ferenc wrote: > Hi, > > I beleive you are looking for this: > http://www.squid-cache.org/Doc/config/request_header_replace/ > (replace the host header) > > > Regards, > Sipi > > On 2014-05-29 21:47, Roberto Carn

Re: [squid-users] Install Godaddy certificate on squid to use ssl-bumping functionnality

Antoine, I really think you are completely missing the point of what everyone has said to you on this list. 1. SSL bumping is effectively an MITM attack against users/clients and they must be aware that it is happening and it must be legal in your country and also comply with company policy

Re: [squid-users] Reverse proxy: destination hostname different from real hostname

Hi, I beleive you are looking for this: http://www.squid-cache.org/Doc/config/request_header_replace/ (replace the host header) Regards, Sipi On 2014-05-29 21:47, Roberto Carna wrote: > Dear, suppose I have a web server with a DNS hostname > "server.company.com" I want to access, is it possible

[squid-users] Reverse proxy: destination hostname different from real hostname

Dear, suppose I have a web server with a DNS hostname "server.company.com" I want to access, is it possible to setup squid.conf for a reverse mode that uses "alias-server.company.com" as dstdomain ??? Or do I have to use the DNS hostname mandatory ??? Special thanks, Roberto

Re: [squid-users] Install Godaddy certificate on squid to use ssl-bumping functionnality

Thanks for your answers ! Alex your last answer is for me ? What is illegal ? Finally, i managed to install the certificate, in fact my boss had the private key... So i have another problem, squid start correctly with the certificate but on the client with firefox i have this error "ssl_error_ba

[squid-users] Reverse mode: destination hostname change

Dear, I've implemented a Squid reverse proxy that works OK. I have several HTTP and HTTPS sites setup in reverse mode, but now one of them has to change the hostname from server.company.com to mail.company.com. If I define an alias in our internal DNS as follow: mail.company.com CNAME server.c

Re: [squid-users] Abandoning messages

On Thu, 2014-05-29 at 15:13 +1200, Amos Jeffries wrote: > You have a forwarding loop. > > These messages are logged for CONNECT requests and 127.* being on both > local/remote ends of the TCP cnnection is bad news. We have a service running locally decrypting ssl traffic and sending to squid (we