mlister wrote: > Anyways I will compile Squid-3 and start working with it, but I am curious > if you (Henrik, or any of the listers) have any sample configuration files > or could give me cache_peer directive examples to where I have something to > mold. > > client <---SSL-->SQUID1<---SSL--->SQUID2<---HTTP-->webserver
Squid-3: SQUID1: https_port 443 cert=... accel defaultsite=www.your.domain cache_peer squid2 parent 443 0 ssl no-query originserver SQUID2: https_port 443 cert=... accel defaultsite=www.your.domain cache_peer webserver parent 80 0 no-query originserver Squid-2.5+ssl update: SQUID1: https_port 443 cert=... httpd_accel_host www.your.domain httpd_accel_port 80 cache_peer squid2 parent 443 0 ssl no-query never_direct allow all alternatively instead of using cache_peer+never_direct, use a redirector which rewrites the requests as https://www.your.domain/ and register www.your.domain into /etc/hosts with the address of SQUID2. SQUID2: https_port 443 cert=.. httpd_accel_host www.your.domain and put www.your.domain into /etc/hosts with the address of the real web server. In all cases you should also configure http_access to only allow access to www.your.domain.. Regards Henrik