[squid-users] 3.5.8 — SSL Bump questions
James Lay
jlay at slave-tothe-box.net
Fri Sep 11 15:21:04 UTC 2015
On 2015-09-09 08:29 PM, Alex Rousskov wrote:
> On 09/09/2015 07:06 PM, Dan Charlesworth wrote:
>
>> if I change ssl_bump peek step1 to ssl_bump peek all, I get this
>> assertion failure:
>>
>> PeerConnector.cc:747: "!callback"
>
> Please see http://bugs.squid-cache.org/show_bug.cgi?id=4303
>
> Alex.
>
>
>
Confirming that this now works:
ssl_bump peek all
acl allowed_https_sites ssl::server_name_regex
"/opt/etc/squid/http_url.txt"
ssl_bump splice step3 allowed_https_sites
ssl_bump terminate all
Sep 11 08:56:34 gateway (squid-1): 192.168.1.100 - -
[11/Sep/2015:08:56:34 -0600] "CONNECT 69.192.193.29:443 HTTP/1.1"
iadsdk.apple.com - 200 633 TCP_TUNNEL:ORIGINAL_DST peek
Thanks for this Alex.
James
More information about the squid-users
mailing list