[squid-users] 2 way SSL on a non standard SSL Port
Bart Spedden
bart.spedden at 3sharecorp.com
Mon Nov 30 17:53:54 UTC 2015
I can successfully connect as long as I don't use squid for either 1 way or
2 way TLS connections. I've also successfully connect via curl. So, I feel
like the site's certs are working well. I could be totally off base here
but my interpretation of the the 503 (service unavailable) is that squid is
timing out on tls handshake? But what is weird is that when using squid I
can successfully connect to google using https. So, that is what makes me
wonder if it has something to do with the non-standard https port?
On Mon, Nov 30, 2015 at 10:44 AM, Eliezer Croitoru <eliezer at ngtech.co.il>
wrote:
> It seems like the issue is not in the basic access control but rather in
> the TCP level.
> a 503 means some kind of network errors in most cases.
> Have you tried contacting the site\ip using netcat or openssl -sa ?
>
> Eliezer
>
>
> On 30/11/2015 19:40, Bart Spedden wrote:
>
>> Well, interestingly, it seems like the install from the rpm worked.
>>
>> squid -v
>>
>> Squid Cache: Version 3.5.11
>>
>> However, I still see the same error. I also tried the following
>> configuration thinking that it would allow ssl on any port and I still the
>> same error:
>>
>> #http_access deny CONNECT !SSL_ports
>>
>> So, maybe the problem has nothing to do with the non-standard SSL port?
>>
>> Also, Here's the actual error that I'm seeing:
>>
>> TAG_NONE/503 0 CONNECT
>>
>
>
--
Bart Spedden | Senior Developer
+1.720.210.7041 |
*bart.spedden at 3sharecorp.com <bart.spedden at 3sharecorp.com>*
3 | S H A R E | Adobe Digital Marketing Experts | An AdobeĀ® Business
Plus Level Solution PartnerConsulting | Training | Remote Operations
Management
<http://www.3sharecorp.com/en/services/rom.html>
<http://www.3sharecorp.com/en/services/rom.html>
<http://www.3sharecorp.com/en/services/rom.html>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20151130/98517e38/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: rom-email-sig4_600x100.png
Type: image/png
Size: 16361 bytes
Desc: not available
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20151130/98517e38/attachment-0001.png>
More information about the squid-users
mailing list