[squid-users] squid reverse proxy infront of exchange 2010
alex at samad.com.au
Fri Dec 11 04:29:48 UTC 2015
I did the change over today.
Tested with Window 7 + exchange 2010 and it wouldn't connect whilst
there was no tls1 !
interesting IE worked against the web site .... so ..
Did you come across this issues ?
On 11 December 2015 at 11:09, dweimer <dweimer at dweimer.net> wrote:
> On 2015-12-10 4:24 pm, Alex Samad wrote:
>> Answer my own question
>> seems like there is a no-vhost, I presume vhost turns it on
>> On 11 December 2015 at 09:23, Alex Samad <alex at samad.com.au> wrote:
>>> On 10 December 2015 at 23:44, dweimer <dweimer at dweimer.net> wrote:
>>>> https_port 10.50.20.12:443 accel defaultsite=mail.mydomain.com \
>>>> cert=/certs/wildcard.certificate.crt \
>>>> key=/certs/wildcard.certificate.key \
>>>> options=NO_SSLv2:NO_SSLv3:NO_TLSv1:SINGLE_DH_USE:CIPHER_SERVER_PREFERENCE \
>>>> dhparams=/usr/local/etc/squid/dh.param \
>>>> cipher=ALL:!aNULL:!eNULL:!LOW:!EXP:!ADH:+HIGH:+MEDIUM:!SSLv2:!RC4 \
>>> what is the vhost option can't find it on the doco page
> It maybe on by default now, unless you are doing multiple host names, its
> not necessary. The setup on mine is using a wildcard certificate and is
> proxying multiple domains names.
> Dean E. Weimer
More information about the squid-users