[squid-users] Squid proxy configuration for client SSL termination
Michael Leikind
bigmyx at gmail.com
Thu Apr 16 01:23:00 UTC 2020
Greetings to the Squid community!
I would like to get the recommendation on how to configure Squid (latest
version) with client SSL termination.
The requirement is to provide proxy access to the internet for the client
who has no ability to install a custom CA certificate.
Following the documentation here
<https://wiki.squid-cache.org/Features/HTTPS#Encrypted_browser-Squid_connection>,
it is possible to use HTTPS for the browser-proxy connection the same way
as HTTP.
However, the only way to achieve that
<https://wiki.squid-cache.org/ConfigExamples/Intercept/SslBumpExplicit> is
to use SSL Interception with self-signed CA certificate, which cannot work
in my case.
Can someone please advise?
Thank you!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20200415/54c6dea2/attachment.html>
More information about the squid-users
mailing list