[squid-users] how to go from connect/tunnel in squid4 ->GET
Alex Rousskov
rousskov at measurement-factory.com
Thu Nov 29 15:53:11 UTC 2018
On 11/29/18 5:33 AM, L A Walsh wrote:
> I bumped to squid4 a few months ago, but stil haven't gotten to the point
> where I can see and cache individual requests and following config examples
> @ https://wiki.squid-cache.org/ConfigExamples/Intercept/SslBumpExplicit,
> I'm feeling rather clueless as to what I'm missing.
What record(s) does your access.log contain for a single test
transaction (preferably using curl or wget rather than a browser)? Any
messages in cache.log for that test transaction? Any ERRORs or WARNINGs
in cache.log at Squid startup?
Alex.
> My port line looks like (it's all 1 line).
> http_port ishtar.sc.tlinx.org:8118 ssl-bump
> generate-host-certificates=on dynamic_cert_mem_cache_size=64MB
> tls-cert=/etc/squid/ssl_cert/myCA.pem
> options=SINGLE_DH_USE,SINGLE_ECDH_USE
> tls-dh=secp521r1,/etc/squid/ssl_cert/dhparam-4096.pem
>
> myCA.pem contains both private+public sigs. I generated a separate
> dhparam file, but don't know if I was supposed to include the curve
> type in the generation command or if it only uses that later.
>
> I pre-generated the cert dir and it seems to be running, but I don't
> see any certs appearing in the dir
More information about the squid-users
mailing list