We have a Squid 3.4 server configured as a Reverse Proxy on Oracle
Linux 6. It is working correctly for most sites, those which are HTTP
all the way through to the peer, Those which are HTTPS all the way
through to the peer and those which have SSL offloaded at the external
interface on Squid.
Hi everyone, I'm posting this in the hope that someone will have some
experience in connecting Microsoft System Center Configuration Manager
(SCCM) through a Squid Reverse Proxy in Internet-Based Client
Management mode. Basically, at the moment we use SCCM through an MS
TMG server in Reverse
On 06/30/2014 02:07 PM, John Gardner wrote:
Eliezer
The line that was working but is now causing problems is;
https_port 10.x.x.95:443 accel
cert=/usr/newrprgate/CertAuth/cert/cert.crt
key=/usr/newrprgate/CertAuth/cert/key.pem
cipher=ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM
running successfully.
Thanks
John
On 1 July 2014 20:26, Eliezer Croitoru elie...@ngtech.co.il wrote:
On 07/01/2014 09:25 PM, John Gardner wrote:
Eliezer
I have now re-created the SSL certificates by creating the CSR,
sending the to the CA and getting the new certificate back.
Unfortunately
On 30 June 2014 12:06, John Gardner jeg1...@gmail.com wrote:
Eliezer
The line that was working but is now causing problems is;
https_port 10.x.x.95:443 accel
cert=/usr/newrprgate/CertAuth/cert/cert.crt
key=/usr/newrprgate/CertAuth/cert/key.pem
cipher=ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA
I wonder if some of you can help me in figuring out an issue. For the
last three years, we've had a Squid Reverse Proxy running on
Oracle Linux 5 (64 bit) with version 2.6 of Squid (which came with the
distro) and it's been a total success and never missed a beat.
Now, I realised that this
Hi everyone,
I’d like some advice regarding the using SSL Bump functionality with
Squid, and ask some questions regarding whether I correctly understand
what SSL Bump is designed to do. First, however, I’d like describe
what I’m looking to do so you have some background.
At the moment, we have
This email has been classified as: NOT PROTECTIVELY MARKED
I wonder if someone can help me out with an issue that has come to light with
a new application we are running behind our Squid 2.6 Reverse Proxy Server.
At the moment we have a situation shown below;
INTERNET --- |FIREWALL1| ---
This email has been classified as: NOT PROTECTIVELY MARKED
This email has been classified as: PROTECT I wonder if someone can help me out
with an issue that has come to light with a new application we are running
behind our Squid 2.6 Reverse Proxy Server.
At the moment we have a situation
John,
I believe what you need to do is export the Certificates from the IIS
servers, they will be saved in a .pfx file, which is the PKCS12 format.
OpenSSL can convert these into the PEM format that squid supports, these
commands will give you the desired output.
Exports the
They may already be stored in PEM format then, the JUNEOS that runs on most
Juniper devices was originally derived from FreeBSD and as such its SSL
implementation is likely based on OpenSSL (of course that's just a guess). I
haven't worked on any Juniper devices myself, so I am of no help in
Hi everyone. I've got a query about running Squid as a Reverse Proxy that I
hope someone can answer.
Over the past year, I've been tasked with introducing serveral Squid servers
into our organisation, most of them so far have been internal Caching proxies,
but I'm now at the stage where I
It does not matter where the files are generated. As long as they are
stored on the Squid box for Squid to access.
For Squid you do not have to install anything into OpenSSL, which is
just a library.
Thanks for the pointers Amos.
Hopefully I'm going to attempt to do it this way;
1) Export
I wonder if anyone can point me in the correct direction of solving this
problem.
We are currently using two Squid (2.6) Caching Proxy Servers (CP1 and
CP2) on different sections of the network. The only way HTTP traffic can
get from one network to the other is via the proxy chained proxies. The
14 matches
Mail list logo
