On 2/11/2012 12:17 a.m., Heinrich Hirtzel wrote:
You are missing the intercept flag on https_port. That is what tells
Squid how to interpret the URL and TCP layer differences in the port 80
and 443 syntax traffic.
I've already tried that (with 3.1.20, since 3.2.3 isn't working here at all), but
ion prior 3.3? Just asking
because I've seen several post in the internet where ppl managed to get SSL
interception running with 3.1 and 3.2. I'm totally confused... :-(
Thanks for your help so far!
> To: squid-users@squid-cache.or
Date: Thu, 1 Nov 2012 00:59:15 +0800
From: ammdispose-squid
--
On Wed 31 Oct, 2012 9:03 PM IST Heinrich Hirtzel wrote:
>http_port 10.0.1.1.:3128 intercept
>https_port 10.0.1.1.:443 ssl-bump
cert=/user/local/squid3/ssl_cert/my
On 01.11.2012 04:49, Heinrich Hirtzel wrote:
Hi Eliezer
what iptables rules have you used?
also you better use squid 3.2 for ssl-bump.
iptables -A PREROUTING -t nat -i eth1 -p tcp --dport 81 -j REDIRECT
--to-port 3128
iptables -A PREROUTING -t nat -i eth1 -p tcp --dport 443 -j REDIRECT
--to-p
On 10/31/2012 6:43 PM, Heinrich Hirtzel wrote:
I've just updated to the most recent squid version (compiled with --enable-ssl
*and* --enable-ssl-crtd):
./squid -v
Squid Cache: Version 3.2.3-20121031-r11695
what are all the compilation options from -v (curios)
try the latest stable at:
http://
On 01.11.2012 04:33, Heinrich Hirtzel wrote:
Hello
For a school project I'm trying to intercept SSL connections by using
Squid (client -> squid (transparent) -> server).
I'm running Squid 3.1.20 on Ubuntu server 12.10 (64 bit) using the
following configuration:
*
cache.org
> Subject: Re:: [squid-users] Squid and SSL interception (ssl-bump)
>
>
>
>
>
>
> --
> On Wed 31 Oct, 2012 9:03 PM IST Heinrich Hirtzel wrote:
>
>
> >http_port 10.0.1.1.:3128 intercept
> >https_port 10.0.1.1.:44
--
On Wed 31 Oct, 2012 9:03 PM IST Heinrich Hirtzel wrote:
>http_port 10.0.1.1.:3128 intercept
>https_port 10.0.1.1.:443 ssl-bump cert=/user/local/squid3/ssl_cert/myCA.pm
>
you have forgotten intercept on https line
Amm
00
> Subject: RE: [squid-users] Squid and SSL interception (ssl-bump)
>
>
> Hi Eliezer
>
> > what iptables rules have you used?
> > also you better use squid 3.2 for ssl-bump.
> iptables -A PREROUTING -t nat -i eth1 -p tcp --dport 81 -j REDIRECT --to-port
> 3128
>
m: elie...@ngtech.co.il
> To: squid-users@squid-cache.org
> Subject: Re: [squid-users] Squid and SSL interception (ssl-bump)
>
> On 10/31/2012 5:33 PM, Heinrich Hirtzel wrote:
> > Hello
> >
> > For a school project I'm trying to intercept SSL connections by using
On 10/31/2012 5:33 PM, Heinrich Hirtzel wrote:
Hello
For a school project I'm trying to intercept SSL connections by using Squid (client
-> squid (transparent) -> server).
I'm running Squid 3.1.20 on Ubuntu server 12.10 (64 bit) using the following
configuration:
*
Hello
For a school project I'm trying to intercept SSL connections by using Squid
(client -> squid (transparent) -> server).
I'm running Squid 3.1.20 on Ubuntu server 12.10 (64 bit) using the following
configuration:
*
http_port 10.0.1.1.:3128 intercept
http
On Thu, 27 Jan 2011 11:31:21 -0800, Anthony Saenz wrote:
> I'm sure this has been brought up tons of times before but I simply
> can't find the answer... My current setup is as follows:
>
> PC -> HAProxy -> Squid -> The World
>
> The reason why I'm using HAProxy is for development environment
>
I'm sure this has been brought up tons of times before but I simply
can't find the answer... My current setup is as follows:
PC -> HAProxy -> Squid -> The World
The reason why I'm using HAProxy is for development environment
switching which is based off cookies. (I inherited things this way) I
Frank Patzig wrote:
Hallo,
hier is the problem(SQUID26):
client --> squid <> ssl-proxy ---> web
Connect the client direct the ssl-proxy can see the content from web-server.
Is the client connect over the squid then are not data from
web-server.(no errors)
Hier is the example:
www.faira
Hallo,
hier is the problem(SQUID26):
client --> squid <> ssl-proxy ---> web
Connect the client direct the ssl-proxy can see the content from web-server.
Is the client connect over the squid then are not data from
web-server.(no errors)
Hier is the example:
www.fairaktiv.com --> Warenkorb
joe ryan wrote:
Hi,
I have a simple webserver that listens on port 80 for requests. I
would like to secure access to this webserver using squid and SSL. I
can access the simple website through http without any issue. When I
As your config shows. Squid is never involved with port 80 inbound traf
Hi,
I have a simple webserver that listens on port 80 for requests. I would like
to secure access to this webserver using squid and SSL. I can access the
simple website through http without any issue. When I try and access it
using https: I get a message in the cache file. See attached.
The web p
Hi,
I have a simple webserver that listens on port 80 for requests. I
would like to secure access to this webserver using squid and SSL. I
can access the simple website through http without any issue. When I
try and access it using https: I get a message in the cache file. See
attached.
The web pag
Editor FoodSQM.com wrote:
Hello,
Maybe I am going about this wrong. I am running squid 2.6 with SSL
support to enable the https port.
The cert seems to be working fine with one exception.
I cannot sort out how to set up the the cert chain necessary Duane
Wessel's book make no mention of cha
Hello,
Maybe I am going about this wrong. I am running squid 2.6 with SSL
support to enable the https port.
The cert seems to be working fine with one exception.
I cannot sort out how to set up the the cert chain necessary Duane
Wessel's book make no mention of chain files for
certs, and ab
> -Original Message-
> From: a a [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, May 17, 2005 11:36 PM
> To: squid-users@squid-cache.org
> Subject: [squid-users] squid and SSL
>
>
> Hello. I'm sorry, but my english is not good.
> I'm triying to give http
Hello. I'm sorry, but my english is not good.
I'm triying to give http service to a computer wich is located outside
of my lan. This computer only has the port 443 opened.
In my router, any incoming tcp to the port 443 is "NATted" to my
computer ( 192.168.1.2 ) to the port 4128 ( squid ) ... ¿ how
Hello. I'm sorry, but my english is not good.
I'm triying to give http service to a computer wich is located outside
of my lan. This computer only has the port 443 opened.
In my router, any incoming tcp to the port 443 is "NATted" to my
computer ( 192.168.1.2 ) to the port 4128 ( squid ) ... ¿ how
On Fri, 19 Nov 2004, Ow Mun Heng wrote:
I'm not sure if Squid should also be configured to handle SSL requests.
(eg : Squid as a transparent proxy for both port 80 and port 443
requests)
Only when explicitly configured as proxy.
I know that squid will try to use the CONNECT method, but I'm wonderi
I'm not sure if Squid should also be configured to handle SSL requests.
(eg : Squid as a transparent proxy for both port 80 and port 443
requests)
I know that squid will try to use the CONNECT method, but I'm wondering
if it's just overkill because it'll most likely bypass the cache.
--
Ow Mun
26 matches
Mail list logo
