<html><head><meta http-equiv="Content-Type" content="text/html charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class=""><br class=""><div><blockquote type="cite" class=""><div class="">On 23 Apr 2015, at 9:22 pm, James Lay <<a href="mailto:jlay@slave-tothe-box.net" class="">jlay@slave-tothe-box.net</a>> wrote:</div><div class=""><div class=""><br class="">
Michael,<br class="">
<br class="">
Could you post your entire config here if possible?  Many of us continue to face challenges with ssl_bump and a working config would be great.  Thank you.<br class="">
<br class="">
James
</div></div></blockquote><div><br class=""></div></div>My ssl_bump configuration is contained in a separate conf file that is “included” via the main squid.conf file.  There is nothing special about my main squid.conf, here is the contents of the include:<div class=""><br class=""></div><div class=""><div class="">https_port 8090 tproxy ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=16MB cert=/etc/squid/ssl-bump.cer key=/etc/squid/ssl-bump.key cafile=/etc/squid/ssl-bump.cer</div><div class="">acl p8090 myportname 8090</div><div class="">acl step1 at_step SslBump1</div><div class="">ssl_bump peek step1</div><div class="">ssl_bump bump p8090</div></div><div class=""><br class=""></div><div class="">Which was built using information from <a href="http://wiki.squid-cache.org/Features/SslPeekAndSplice" class="">http://wiki.squid-cache.org/Features/SslPeekAndSplice</a></div><div class=""><br class=""></div><div class=""><br class=""></div></body></html>