[squid-users] cant bump ssl
Alex Rousskov
rousskov at measurement-factory.com
Tue Dec 15 20:17:43 UTC 2015
On 12/15/2015 12:46 PM, HackXBack wrote:
> why i cant bump ssl conection with android
> my squid conf is
> ssl_bump bump ssl_step2 SNIGroup5
> ssl_bump splice all
In modern Squids, your configuration above is equivalent to:
ssl_bump splice all
because, during the very first SslBump processing step (step1), your
bump rule never matches while your splice rule always does. Once the
final rule (bump, splice, or terminate) matches, Squid performs the
matched action and stops further SslBump rules processing.
I recommend thinking of ssl_bump rules as a single set of instructions,
revisited at each SslBump step, until the final rule matches.
HTH,
Alex.
More information about the squid-users
mailing list