[squid-users] Let Squid use SSL certificate for a parent cache peer
Amos Jeffries
squid3 at treenet.co.nz
Tue May 5 10:30:10 UTC 2020
On 5/05/20 10:21 pm, mariolatif741 wrote:
> The purpose of proxy A is that its the proxy that will be given to my
> clients. The purpose of all what I am doing is to let my clients use proxy B
> indirectly through proxy A (so they can use proxy B without installing the
> CA certificate)
>
It sounds to me like you only need one proxy. Squid can listen on
multiple ports and treat traffic differently per-port.
If you do not want to (or cannot) install a custom CA on clients that is
fine. It just prevents you from using the SSL-Bump 'bump' action on the
TLS traffic from those clients. More than one proxy will not help with
that restriction.
Amos
More information about the squid-users
mailing list