[squid-users] squid4.4 - ssl_bump - deny_info / how to present a blocked message for unwanted https traffic
Andreas Moehrlein
a.moehrlein at me.com
Wed Dec 5 07:10:31 UTC 2018
I use squid as a proxy to enable some http and https sites and redirect all other traffic to a captive portal.
Everything works fine, except for a redirect/deny_info for the not allowed https traffic.
Is there a mechanism, I can use to show a error message for https ?
All http + https traffic is redirected to squid via iptables.
Deny_info works perfect for http.
/etc/squid/squid.conf
acl step1 at_step SslBump1
acl https_whitelist ssl::server_name "/etc/squid/acl/general.list"
ssl_bump peek step1 all
ssl_bump splice https_whitelist
ssl_bump terminate all
deny_info http://10.10.12.1:81/captureme?redirect=%u all
Thanks in advance,
Andreas
More information about the squid-users
mailing list