[squid-users] allways_direct SSL

Amos Jeffries squid3 at treenet.co.nz
Thu Apr 5 21:44:24 UTC 2018


On 06/04/18 08:56, j.emerlik wrote:
> (squid 3.5) I have in my config acl for some domains like:
> 
> acl mydomains dstdomain "/usr/local....."
> 
> and
> 
> cache_peer_access 10.10.x.x allow mydomains
> 
> so all http traffic to domains from my list is forwarded (port 80) to
> another squid and that's works correct but only for port 80, traffic to
> port 443 does work probably because there in config is set:
> 
> allways_direct allow SSL_ports
> 
> and forwarding to my another squid not working.

How is your cache_peer directive setup?

It is more likely because your peer is not setup to receive HTTPS
traffic, so the "mydomains" stuff is not going where you may think.

Amos


More information about the squid-users mailing list