[squid-users] Sorry if this has been asked but I can't find an answer anywhere ...
Grant Taylor
gtaylor at tnetconsulting.net
Mon Sep 27 20:48:57 UTC 2021
On 9/27/21 6:52 AM, Mike Yates wrote:
> So my idea is to install a single squid server and redirect the internal
> servers to that url instead of the original one.
Your use of "redirect" sounds like you will be re-configuring the
clients to connect to the squid server.
Will you be configuring the clients to know that they are using a proxy
server? Or will you be using some sort of transparent and / or reverse
proxy?
> Squid will then redirect the post to the correct external server asi
> it is installed on a server that has external access I hope this
> is possible
What does "redirect" mean in this context?
It sounds like you mean a reverse proxy. -- Which is what I've given
you links to documentation for.
Reading between the lines, the client's won't have access to the
Internet. So, something like a 301 / 302 / 307 / 308 HTTP redirect
won't do much good by themselves.
You need to clearly articulate the following:
1) Are the clients configured to knowingly use a proxy?
- The communications protocol they use is slightly different.
2) What hostname are the client's connecting to?
3) What protocol(s) are the client's using to connect to said hostname?
4) Is TLS being used on any part of the connection?
5) What hostname is Squid supposed to connect to?
6) Will any part of the API URL change /other/ /than/ the hostname?
These six questions have subtle but distinct interaction with each other.
--
Grant. . . .
unix || die
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4013 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20210927/0788ec96/attachment.bin>
More information about the squid-users
mailing list