[squid-users] Squid reverse proxy with SSL bump
joseph jose
joevypana at gmail.com
Tue Sep 8 06:45:06 UTC 2015
Hi,
I have tested squid reverse proxy mode and squid SSL bump both were
successful and working fine.
Is it possible to configure a squid reverse proxy with SSL-bump enabled?
I tried configuring a squid instance in reverse proxy to bump specific
domain traffic using following config line(clubbing both reverse proxy and
SSL bump config directives)
acl ssl_bumping dstdomain testsquid.com
ssl_bump server-first ssl_bumping
sslproxy_cert_error allow ssl_bumping
sslproxy_flags DONT_VERIFY_PEER
sslcrtd_program /usr/local/squid/libexec/ssl_crtd -s
/usr/local/squid/var/lib/ssl_db -M 4MB
http_port 3128 accel defaultsite=testsquid.com vhost vport ssl-bump
generate-host-certificates=on dynamic_cert_mem_cache_size=4MB cert=<cert>
cache_peer <webserverIP> parent <port> 0 no-query originserver
name=squidtest
But squid is logging CONNECT error:method-not-allowed. Am i missing
something in my config?.
Does squid works in reverse proxy mode with SSL bump enabled?
Thanks in advance,
Joseph
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20150908/3962dd18/attachment-0001.html>
More information about the squid-users
mailing list