[squid-users] making proxy-int to talk to proxy-ext
robert k Wild
robertkwild at gmail.com
Tue Nov 26 15:54:32 UTC 2019
hi all,
as i have configured both internal proxy (non internet facing) and external
proxy (internet facing) from source, followed this guide -
https://wiki.squid-cache.org/ConfigExamples/Intercept/SslBumpExplicit
it works if i comment out the ssl lines -
#SSL
#http_port 3128 ssl-bump \
#cert=/etc/squid/ssl_cert/myCA.pem \
#generate-host-certificates=on dynamic_cert_mem_cache_size=4MB
#sslcrtd_program /usr/local/squid/libexec/security_file_certgen -s
/var/lib/ssl_db -M 4MB
#acl step1 at_step SslBump1
#ssl_bump peek step1
#ssl_bump bump all
but as soon as i uncomment them it breaks the link between both servers
this is the error i get from the internal proxy when it tries to contact
the external proxy
https://i.postimg.cc/JzC29gh8/ssl.png
--
Regards,
Robert K Wild.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20191126/80699adc/attachment.html>
More information about the squid-users
mailing list