[squid-users] Non-Transparent HTTP+HTTP Proxy

sknz sakibnizam at gmail.com
Sun Sep 15 10:34:52 UTC 2019


This is the configuration for my HTTP+HTTPS transparent proxy. I'm using this
for logging HTTP and HTTPS traffic without issuing a client certificate. How
to modify this configuration to make it NON-TRANSPARENT?  In WEB-PROXY which
is based on Squid, we can disable it by adding "disable-transparent" clause.

http_port 3128
http_port 3126 intercept
https_port 3127 intercept ssl-bump generate-host-certificates=off
cert=/etc/squid3/certs/squid.pem

acl ssl-bump_port myportname 3127
always_direct allow ssl-bump_port 
ssl-bump none all

Then we add iptable rules to redirect port 80->3126 and 443->3127, so
proxy-client can connect on 3128.



--
Sent from: http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html


More information about the squid-users mailing list