[squid-users] Redirect after sslbump teminate

Eng Hooda eenghooda at yahoo.com
Mon Jun 13 08:51:35 UTC 2016


Thank You for your response.
Using the certificate is something I want to avoid.
So I think it's acceptable as it is now.

I searched again and found an explanation , copied below FYI.

"
To serve an HTTP error to an SSL client, Squid has to establish an SSL
connection with that client.
"






On Sunday, June 12, 2016 8:37 PM, Marcus Kool <marcus.kool at urlfilterdb.com> wrote:


On 06/12/2016 12:34 PM, Eng Hooda wrote:
> Hello Squid Users,
> I have searched for this but I could not find an answer.
> After I peek for media streaming sites using sslbump , I terminate the connection on match , which produces secure connection failed on the client browser .
> Is there a way to redirect to another page like an error page or access denied page instead ?

Redirecting HTTPS is _only_ possible if you use ssl-bump in the peek+bump mode, meaning that all devices must have the Squid CA certificate.
On top of that, there are a number of sites which have several issues and do not work with peek+bump.

Marcus


> Thank you all in advance.
>
> Best Regards,
> Eng Hooda
_______________________________________________
squid-users mailing list
squid-users at lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users


More information about the squid-users mailing list