[squid-users] 2 way SSL on a non standard SSL Port
Amos Jeffries
squid3 at treenet.co.nz
Tue Dec 1 02:08:31 UTC 2015
On 1/12/2015 1:01 p.m., Bart Spedden wrote:
> In the cache.log I have found the following:
>
> CONNECT tv1var.merchantlink-lab.com:8184 HTTP/1.1^M
>
> User-Agent: Java/1.8.0_05^M
>
> Host: tv1var.merchantlink-lab.com:8184^M
>
> Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2^M
>
> Proxy-Connection: keep-alive^M
>
> ^M
>
>
> ----------
>
> 2015/11/30 17:18:47.517 kid1| 85,2| client_side_request.cc(741)
> clientAccessCheckDone: The request CONNECT tv1var.merchantlink-lab.com:8184
> is ALLOWED; last ACL checked: localnet
>
> 2015/11/30 17:18:47.517 kid1| 85,2| client_side_request.cc(717)
> clientAccessCheck2: No adapted_http_access configuration. default: ALLOW
>
> 2015/11/30 17:18:47.517 kid1| 85,2| client_side_request.cc(741)
> clientAccessCheckDone: The request CONNECT tv1var.merchantlink-lab.com:8184
> is ALLOWED; last ACL checked: localnet
>
> 2015/11/30 17:18:47.517 kid1| 44,2| peer_select.cc(258) peerSelectDnsPaths:
> Find IP destination for: tv1var.merchantlink-lab.com:8184' via
> tv1var.merchantlink-lab.com
>
> 2015/11/30 17:18:47.533 kid1| 44,2| peer_select.cc(280) peerSelectDnsPaths:
> Found sources for 'tv1var.merchantlink-lab.com:8184'
>
<snip>
>
> 2015/11/30 17:18:47.533 kid1| 44,2| peer_select.cc(286)
> peerSelectDnsPaths: DIRECT = local=0.0.0.0 remote=
> 104.153.8.184:8184 flags=1
So this one server destination has been found, and will be tried.
>
> 2015/11/30 17:18:47.533 kid1| 44,2| peer_select.cc(295)
> peerSelectDnsPaths: timedout = 0
>
But the TCP connect failed:
> 2015/11/30 17:18:47.534 kid1| 4,2| errorpage.cc(1262) BuildContent: No
> existing error page language negotiated for ERR_CONNECT_FAIL. Using default
> error file.
>
At this point I suspect some external access crontol, such as a firewall
is also blocking that unusual port.
Amos
More information about the squid-users
mailing list