<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<br>
-----BEGIN PGP SIGNED MESSAGE----- <br>
Hash: SHA256 <br>
<br>
This entries is a sign of normal https tunneling phase. You simple
don't know how HTTPS works. :)<br>
<br>
24.02.16 21:32, Bruce Markey пишет:<br>
<span style="white-space: pre;">> I can't seem to find a straight
answer for this. <br>
><br>
> I'm running squid 3.4.8. Compiled from source. <br>
><br>
> I'ts talking via wccp to our firewall. We're using it only
for informational purposes, IE we're not blocking anything, just
trying to get some visibility into what our pipe is being used
for. <br>
><br>
> http works as expected no issues there. <br>
><br>
> What I'm trying to find out is should or shouldn't I get some
sort of log entry for https, the initial get before the tls is
setup? <br>
><br>
> Something like : 1341110030.974 973 172.17.3.37 TCP_MISS/200
2361 CONNECT example.com:443 <a class="moz-txt-link-rfc2396E" href="http://example.com:443"><http://example.com:443></a>
vineeth.v DIRECT/X.X.X.X -<br>
><br>
> I am not trying to do any decryption. <br>
><br>
> Currently I have the firewall not redirecting service 70 (
https ) to squid because when it's on, you can't get to those
sites. <br>
><br>
> So I think at this point I'm either expecting something to
happen that can't, the log being written , or I'm doing something
wrong, I'm just not sure which it is. <br>
><br>
> Squid.conf:<br>
><br>
> #Access Lists<br>
> #acl manager proto cache_object<br>
> #acl localhost src 127.0.0.1/32 <a class="moz-txt-link-rfc2396E" href="http://127.0.0.1/32"><http://127.0.0.1/32></a><br>
> acl internal src 192.168.200.0/21
<a class="moz-txt-link-rfc2396E" href="http://192.168.200.0/21"><http://192.168.200.0/21></a><br>
> acl wireless src 192.168.100.0/23
<a class="moz-txt-link-rfc2396E" href="http://192.168.100.0/23"><http://192.168.100.0/23></a><br>
><br>
> #Ports allowed through Squid<br>
> acl Safe_ports port 80<br>
> acl Safe_ports port 443<br>
> acl SSL_ports port 443<br>
> acl SSL method CONNECT<br>
> acl CONNECT method CONNECT<br>
><br>
> #allow/deny<br>
> #http_access allow localhost<br>
> http_access allow internal<br>
> http_access allow wireless<br>
> http_access deny !Safe_ports<br>
> http_access deny CONNECT !SSL_ports<br>
> http_access deny all<br>
><br>
> #caching directory<br>
> #cache_dir ufs /home/user/squidcache/ 2048 16 128<br>
> #cache_mem 1024 MB<br>
><br>
> #nameservers<br>
> dns_nameservers 192.168.201.1 8.8.8.8<br>
> #WCCPv2 items<br>
> http_port 3128 intercept<br>
> wccp_version 2<br>
> wccp2_router 192.168.200.73<br>
> wccp2_forwarding_method gre<br>
> wccp2_return_method gre<br>
> wccp2_service standard 0 password=xxxxxxxx<br>
> wccp2_service dynamic 70 password=xxxxxxxx<br>
> wccp2_service_info 70 protocol=tcp flags=dst_ip_hash
priority=240 ports=443<br>
><br>
> Thank you<br>
> Bruce<br>
><br>
><br>
><br>
><br>
> _______________________________________________<br>
> squid-users mailing list<br>
> <a class="moz-txt-link-abbreviated" href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a><br>
> <a class="moz-txt-link-freetext" href="http://lists.squid-cache.org/listinfo/squid-users">http://lists.squid-cache.org/listinfo/squid-users</a></span><br>
<br>
-----BEGIN PGP SIGNATURE-----
<br>
Version: GnuPG v2
<br>
<br>
iQEcBAEBCAAGBQJWzgBfAAoJENNXIZxhPexGuf4H/38W2tBzjgxZlF1eeskmVSnj
<br>
V1sNaiqr0fsmUiaIOF6umsOKGbch7Vh2NrGBcrG1Mqu1Bgc0OFJVqTarTxwF6DaD
<br>
y4wPKz6e1JqU/HmQbpnt4u5qc3NqC/x0DWujkNh6K8ndIkgcfig+844gp7AsnkBX
<br>
+Kiu8jB55aQfAzXIxCFxl2M3QYG7MWzhgXeUpqnseZeaOdySwhrqUb/t2n2HI4b+
<br>
ckhFGoVc0+/GcqTZ/XI9+kPZyhvczUnGLd4Bgcxd4Jz32O1rqsf3yBtzSUVp7O1W
<br>
B1K9hPXSRGTlf9GmXRC5Lc7IRDkiVLA7m0quaojJSYRbEWrQ9+GELm/QXWGxZ/o=
<br>
=aMc9
<br>
-----END PGP SIGNATURE-----
<br>
<br>
</body>
</html>