[squid-users] TLS Connection Upgrade for Windows

Amos Jeffries squid3 at treenet.co.nz
Wed Aug 15 13:18:56 UTC 2018

On 15/08/18 21:19, De Leon, Ma Katrina B. wrote:
> Hi,
> I've seen several discussions on using Squid proxy to upgrade client TLS connections using ssl_bump. But all of the existing discussions applies to Linux/Unix Systems.
> Can anyone confirm if this is also applicable or possible for Windows? I am trying to integrate our application (SAP PI) which uses TLS 1.0 to Salesforce which only allows TLS 1.1 and above.

The SSL-Bump features are not specific to any OS. They rely solely on
the Squid and OpenSSL versions being used.

The problems you will encounter with Windows is its lack of NAT or
TPROXY capabilities. So port 443 traffic cannot be intercepted into the
proxy in the first place (same for port 80, etc).


More information about the squid-users mailing list