Hello, I found out something strange
acl step1 at_step SslBump1 acl step2 at_step SslBump2 acl step3 at_step SslBump3 acl nobumpsites ssl::server_name "/etc/squid/sslnobumpsites-acl.squid"# I had these 3 settings - most worked, but only a few hosted at cloudflare worked: problems with SNI there, but only there
#ssl_bump stare step1 all #ssl_bump splice nobumpsites #ssl_bump bump all # so I did these 3 settings ssl_bump peek step1 ssl_bump splice nobumpsites ssl_bump stare allthe file above contains server names where no SSL interception should be done, e.g. banking;
can someone explain the difference between these two ways - the commented ones and the other 3 settings?
Thanks, Walter
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
