<div dir="ltr"><div>I think I finally figured out how to not bump certain sites and to bump all others. I put this in squid.conf<br><br><div style="margin-left:40px"><i>acl step1 at_step SslBump1<br>acl step2 at_step SslBump2<br>acl nobumpSites ssl::server_name .<a href="http://wellsfargo.com">wellsfargo.com</a><br>ssl_bump peek step1<br>ssl_bump splice step2 nobumpSites<br>ssl_bump bump all<br></i></div><br></div><div>When I check the access log I see that the <a href="http://wellsfargo.com">wellsfargo.com</a> com only appears as <a href="http://wellsfargo.com">http://wellsfargo.com</a> without any of the full URL but any other https site I see as, for example, <a href="https://yahoo.com">https://yahoo.com</a> with the full URL.<br><br></div><div>Are the lines in the squid.conf correct and is it doing what I want it do, which is to not bump the nobumpSites and bump all other sites that are not in nobumpSites?<br></div><div><i></i></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, May 20, 2015 at 12:45 PM, Stanford Prescott <span dir="ltr"><<a href="mailto:stan.prescott@gmail.com" target="_blank">stan.prescott@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Never mind. I figured the acl out. I was using someone else's instructions who accidentally left out the double :: <b><i>ssl::server_name</i></b> using just a single :.<br></div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><div class="gmail_quote">On Wed, May 20, 2015 at 12:36 PM, Stanford Prescott <span dir="ltr"><<a href="mailto:stan.prescott@gmail.com" target="_blank">stan.prescott@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div><div>After a diversion getting SquidClamAV working, i am back to trying to get peek and splice working. I am trying to put together information from previous recommendations I have received. Right now, I can't get the server_name acl working. When I put this in my squid.conf<br><br><i><b>acl nobumpSites ssl:server_name .<a href="http://example.com" target="_blank">example.com</a></b></i><br><br></div>I get a fatal error starting squid using that acl saying the acl is "Bungled".<br><br></div>Is the form of the acl incorrect?<br></div>
</blockquote></div><br></div>
</div></div></blockquote></div><br></div>