[squid-users] squid reverse proxy infront of exchange 2010
Alex Samad
alex at samad.com.au
Fri Dec 11 04:29:48 UTC 2015
Hi
I did the change over today.
Tested with Window 7 + exchange 2010 and it wouldn't connect whilst
there was no tls1 !
interesting IE worked against the web site .... so ..
Did you come across this issues ?
On 11 December 2015 at 11:09, dweimer <dweimer at dweimer.net> wrote:
> On 2015-12-10 4:24 pm, Alex Samad wrote:
>>
>> Hi
>>
>> Answer my own question
>> http://www.squid-cache.org/Versions/v3/3.5/cfgman/http_port.html
>>
>> seems like there is a no-vhost, I presume vhost turns it on
>>
>>
>> On 11 December 2015 at 09:23, Alex Samad <alex at samad.com.au> wrote:
>>>
>>> Hi
>>>
>>>
>>> On 10 December 2015 at 23:44, dweimer <dweimer at dweimer.net> wrote:
>>>>
>>>> https_port 10.50.20.12:443 accel defaultsite=mail.mydomain.com \
>>>> cert=/certs/wildcard.certificate.crt \
>>>> key=/certs/wildcard.certificate.key \
>>>>
>>>> options=NO_SSLv2:NO_SSLv3:NO_TLSv1:SINGLE_DH_USE:CIPHER_SERVER_PREFERENCE \
>>>> dhparams=/usr/local/etc/squid/dh.param \
>>>> cipher=ALL:!aNULL:!eNULL:!LOW:!EXP:!ADH:+HIGH:+MEDIUM:!SSLv2:!RC4 \
>>>> vhost
>>>
>>>
>>> what is the vhost option can't find it on the doco page
>>> http://www.squid-cache.org/Versions/v3/3.5/cfgman/https_port.html
>
>
> It maybe on by default now, unless you are doing multiple host names, its
> not necessary. The setup on mine is using a wildcard certificate and is
> proxying multiple domains names.
>
>
> --
> Thanks,
> Dean E. Weimer
> http://www.dweimer.net/
More information about the squid-users
mailing list