[squid-users] ssl-bump does not redirect to block page
Amos Jeffries
squid3 at treenet.co.nz
Wed Feb 13 12:36:39 UTC 2019
On 14/02/19 1:10 am, leomessi983 wrote:
> I use this configuration to solve my problem.
> Whit this configuration at first step I use bump action for sites that i
> want to block and show ACCESS_DENIED page then splice all other requests!!
> My problem in this config is when my clients want to see block pages
> they first see SSL warning in their browser then after click on
> exception they will see ACCESS_DENIED page!!
Welcome to HTTPS - where clients actually tell you if a mystery
third-party is touching your web traffic.
You know, like maybe a proxy answering on a connection that supposedly
went directly to a web server.
There is only one way to avoid these popups and that is to do as all our
documentation should have made you aware already. Install your custom /
self-signed CA into every CA storage location the clients are using.
> ..........
>
> acl blk ssl::server_name "/var/blkfiles/url.txt"
>
> http_access deny blk
>
> acl step1 at_step SslBump1
> ssl_bump peek step1
> ssl_bump bump blk
> ssl_bump splice all
>
>
>
> On Wednesday, February 13, 2019, 9:55:06 AM GMT+3:30,
> squid-users-request wrote:
>
>
> Send squid-users mailing list submissions to
Please do set your subscription to deliver posts as individual emails
for the time when you are discussion things. Replying to the specific
message your response is about really helps keep threads properly linked
together for those of us using proper email clients and for the systems
presenting our messages in web forum formats.
Please do not quote the digest of an entire day/week/months postings in
your reply emails.
Amos
More information about the squid-users
mailing list