[squid-users] help with regard to http/https filtering

Pavel Kazlenka pavel.kazlenka at measurement-factory.com
Fri Feb 6 05:39:01 UTC 2015


Hi Rajkumar,

You probably need something like
acl NoUpload method POST
acl NoUpload method UPLOAD
....
ssl_bump deny NoUpload


Best wishes,
Pavel

On 02/06/2015 05:20 AM, Rajkumar Prasad wrote:
>
> Hi Pavel,
>
> Thanks for your help. I did this additional configs and now http http 
> filterings working well for HTTPS enabled sites as well. I have 
> another requirement wherin i need to filter http POST methods, which i 
> am able to do for http sites. Is there a way we can achieve the same 
> for https enabled sites? We need to ensure that there is no way people 
> can send or upload any confidential contents for security reasons.
>
> Thanks much for your help !
>
> Thanks & Regards,
>
> _______________________________________________________________
>
> Rajkumar Prasad
>
> Network Administrator
>
> rprasad at pranastudios.com
>
> _______________________________________________________________
>
> ------ Original message------
>
> *From: *Pavel Kazlenka
>
> *Date: *Wed, Feb 4, 2015 14:10
>
> *To: *Rajkumar Prasad;squid-users at lists.squid-cache.org;
>
> *Subject:*Re: [squid-users] help with regard to http/https filtering
>
> Hi Rajkumar,
>
> You need SSLBump feature 
> (http://wiki.squid-cache.org/Features/SslBump) configured in order to 
> use url_regex acl against https traffic.
>
> Best wishes,
> Pavel
>
> On 02/04/2015 09:38 AM, Rajkumar Prasad wrote:
>>
>> Hi Everyone,
>>
>> Have been working on very basic squid configurations and need a small 
>> help. We have done this setup for everyone to provide very limited 
>> access on restricted no of websites. My question here is that, is 
>> there a way we can control entire certain part of URL to be getting 
>> dropped instead of whole website and other contents. For e.g.
>>
>> We need to have access to http://renderman.pixar.com 
>> <http://renderman.pixar.com> however we want to control an internal 
>> link within it “https://renderman.pixar.com/forum/download.php & 
>> https://renderman.pixar.com/forum/teamviewer.php” . I see these are 
>> HTTPS enabled portal and maybe I am unable to. My intention is to 
>> block these specific URL’s, keeping rest other navigation working. I 
>> tried url_regex and urlpath_regex and those are not seems to be working.
>>
>> See if you can add a little help.
>>
>> Thanks
>> Rajkumar
>>
>>
>>
>> _______________________________________________
>> squid-users mailing list
>> squid-users at lists.squid-cache.org
>> http://lists.squid-cache.org/listinfo/squid-users
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20150206/444229e4/attachment.html>


More information about the squid-users mailing list