[squid-users] Is it possible to send the connection, starting with the CONNECT, to cache-peer?
Matus UHLAR - fantomas
uhlar at fantomas.sk
Tue Sep 15 17:42:12 UTC 2015
>> On 15.09.15 22:45, Yuri Voinov wrote:
>>> Does anyone know - is it possible to send the connection, starting with
>>> the CONNECT, to cache-peer?
>15.09.15 23:17, Matus UHLAR - fantomas пишет:
>> cache_peer_access with proper ACLs should do that.
>> note that always_direct can avoid it.
On 15.09.15 23:33, Yuri Voinov wrote:
>Squid working in transparent SSL Bump mode.
>
>AFAIK, here is SSL decrypts. AFAIK, decrypted tunnel denied to be
>forwarded to parent.
>
>I need to forward some URLs without decryption to peer. Whole session
>starting with CONNECT.
>
>Problem: Peer must accepts both HTTP and HTTPS connections. Yes, there
>is Privoxy, which can tunnel CONNECT. How to tell Squid - "Forward this
>URL and this URL into peer, whenever HTTP or HTTPS"?
disable sslbump (enable "splice") with proper ACLs:
http://www.squid-cache.org/Doc/config/ssl_bump/
--
Matus UHLAR - fantomas, uhlar at fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
He who laughs last thinks slowest.
More information about the squid-users
mailing list