[squid-users] Squid cache with SSL
Andrey Etush-Koukharenko
andkuha at gmail.com
Mon May 25 08:09:15 UTC 2020
Hello, I'm trying to set up a cache for GCP signed URLs using squid 4.10
I've set ssl_bump:
*http_port 3128 ssl-bump cert=/etc/ssl/squid_ca.pem
generate-host-certificates=on
dynamic_cert_mem_cache_size=4MBsslcrtd_program
/usr/lib/squid/security_file_certgen -s /var/lib/ssl_db -M 4MBacl step1
at_step SslBump1ssl_bump peek step1ssl_bump bump all*
I've set cache like this:
*refresh_pattern -i my-dev.storage.googleapis.com/.*
<https://urldefense.proofpoint.com/v2/url?u=http-3A__my-2Ddev.storage.googleapis.com_.-2A&d=DwMFaQ&c=V9IgWpI5PvzTw83UyHGVSoW3Uc1MFWe5J8PTfkrzVSo&r=1mJtF4AWJIR5drMqecglyWB1YONyKEwvGYJOP89bCno&m=e5WrWef5AGz1A3EyZZJIgADr8-CyXnjTF4-XlKUORFo&s=GVr7hG6qzdEYkhWWvj2u4y7qLxXUiOY6Yg_o-EmQaV8&e=>
4320 80% 43200 override-expire ignore-reload ignore-no-store ignore-private*
In the cache directory, I see that object was stored after the first call,
but when I try to re-run the URL I get always get:
*TCP_REFRESH_UNMODIFIED_ABORTED/200*
and I get the empty object, I've tried to play with *refresh_pattern *params
but still no luck.
Thanks for your help
Andrey
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20200525/08911a99/attachment.html>
More information about the squid-users
mailing list