[squid-users] question about encrypted connection between https client and Squid
yvoinov at gmail.com
Sun Mar 1 17:24:48 UTC 2015
-----BEGIN PGP SIGNED MESSAGE-----
01.03.15 23:18, Julianne Bielski пишет:
> I have an https client (not a browser) that normally connects to a
> reverse proxy. When it needs to go through a forward proxy, it
> requests a CONNECT tunnel. I now have a requirement to also be able
> to encrypt the connection between my client and the forward proxy,
> and I think this is possible using Squid and the https_port
> directive (??)
> My question is, will my https client now have to decrypt twice?
> Once for the connection with the forward proxy and once for the
> connection with the reverse proxy?
Re-encryption will performs only in case SSL-bumped connections.
But now I still can't imagine your infrastructure and how it must work.
> Also, must my https client still send a CONNECT message to Squid,
> or does it just connect to Squid's https_port at the TCP level,
> perform the SSL handshake, and then open a TCP connection to the
> reverse proxy?
Still want to take a look on your infrastructure scheme.
> J. Bielski
> _______________________________________________ squid-users mailing
> list squid-users at lists.squid-cache.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
-----END PGP SIGNATURE-----
More information about the squid-users