[squid-users] SSL intercept in explicit mode
Eliezer Croitoru
eliezer at ngtech.co.il
Wed Mar 28 07:33:16 UTC 2018
Hey Danilo,
I have tried to understand the issue and scenario from 0 but now I’m now sure I understood it.
What have achieved until now in your setup?
Any network can be “simplified” in order to understand on what you do have control and what you do not.
>From your words:
“applications that dont support proxy - i.e. dont forward requests to proxy?”
I understand that you are talking about some kind of client such as a browser or a other software.
Can you be more specific?
>From the older posts I understand it might involve ssl-bump but I am missing some details on the clients.
Please provide more details on your environment so we can somehow make a summery for your use case.
Thanks,
Eliezer
----
Eliezer Croitoru <http://ngtech.co.il/lmgtfy/>
Linux System Administrator
Mobile: +972-5-28704261
Email: eliezer at ngtech.co.il
From: squid-users <squid-users-bounces at lists.squid-cache.org> On Behalf Of Danilo V
Sent: Tuesday, March 13, 2018 15:45
To: squid-users at lists.squid-cache.org
Subject: [squid-users] SSL intercept in explicit mode
Is it possible/feasible to configure squid in explicit mode with ssl intercept?
Due to architecture of my network it is not possible to implement transparent proxy.
What would be the behavior of applications that dont support proxy - i.e. dont forward requests to proxy?
Any guides?
Danilo
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20180328/034f1cae/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 11308 bytes
Desc: not available
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20180328/034f1cae/attachment-0001.png>
More information about the squid-users
mailing list