[squid-users] ipsec and squid https intercept
leomessi983 at yahoo.com
leomessi983 at yahoo.com
Sat Jul 6 11:51:36 UTC 2019
HiI use 2 server that connected to each other with IPsec tunnel.
client >>>> Server1 ======ipsec tunnel======Server2>>>>Internat
I configured Nat in Server2 toward internet and I use squid with tproxy and ssl bump configuration to intercept https requests!without ipsec tunnel my squid server work fine and also when I disable squid in server2 and only use IPsec tunnel everythig is going fine but when I enable squid with IPsec tunnel my client in their browsers get SSL_ERROR_RX_RECORD_TOO_LONG error and squid cache.log show this errors:
"JulĀ 6 15:44:59 *****: 2019/07/06 15:44:59| SECURITY ALERT: on URL: mobile.pipe.aria.microsoft.com:443JulĀ 6 15:44:59 *****: 2019/07/06 15:44:59| SECURITY ALERT: Host header forgery detected on local=a.b.c.d:443 remote=10.0.0.110:60270 FD 12 flags=17 (local IP does not match any domain IP)"
I checked my DNS configuration in clients and squid server and they are both same and are 8.8.8.8!
what should i do?!
what is wrong with my configurations?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20190706/d8edf86e/attachment.html>
More information about the squid-users
mailing list