Thank you Amos.
I'll try that!
I've made an investigation here and looks like Squid 3.5.9 separates the
ICAP payload on little chunks with the size of 27 bytes.
This is probably a side effect of the bug 4353 / 4206 issue on the main
I/O socket from the client. On a fast Squid the small input
Hello Yuri,
I have the same problem with transparent proxy (can't bypass bad web
sites) and as I know squid guys did not fix SNI issue yet. Forward proxy
works smoothly.
Tell me something if I was wrong)
My configuration is following:
/
acl step1 at_step SslBump1//
//ssl_bump stare step1
:
2014/11/27 01:15:22.851| DomainData.cc(110) match: aclMatchDomainList:
'212.42.77.232' NOT found
Thank you guys.
11/29/2014 6:17 AM, Amos Jeffries написав(ла):
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 28/11/2014 2:48 a.m., Vadim Rogoziansky wrote:
Hello Amos.
Thank you for answer
Hello All.
My goal is to do ssl bumping in transparent proxy mode with domain
exclude possibility.
Let me tell you about squid's strange behaviour when I'm trying to do it.
In browsers it says something like this:
/This server could not prove that it is www.ukr.net; its security
certificate
Hello All.
Do you have any ideas how we can resolve it? I have the same issue.