[squid-users] Have issue with "https_port ssl-bump intercept"
pius
piuschungath at gmail.com
Mon Aug 13 17:06:38 UTC 2018
Hi,
It will be great if anybody can help.
I can see that the client can talk to squid and squid communicating to
google. But it responding with an error.
###### Curl Log #####
]# curl https://www.google.com -iv
* About to connect() to www.google.com port 443 (#0)
* Trying 216.58.204.68...
* Connected to www.google.com (216.58.204.68) port 443 (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none
* NSS error -12263 (SSL_ERROR_RX_RECORD_TOO_LONG)
* SSL received a record that exceeded the maximum permissible length.
* Closing connection 0
curl: (35) SSL received a record that exceeded the maximum permissible
length.
############# access.log #####
1534179809.818 0 10.222.17.37 TCP_DENIED/403 3605 CONNECT
216.58.204.68:443 - HIER_NONE/- text/html
1534179809.900 0 10.222.17.37 TAG_NONE/400 0 NONE error:invalid-request
- HIER_NONE/- text/html
#######
--
Sent from: http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html
More information about the squid-users
mailing list