Am 25.07.2012 05:17, schrieb Jerome Alet:
Any idea what I'm doing wrong ?
This is what you're doing wrong:
> Now I'd like to set it up as an HTTPS transparent proxy as well.
HTTPS traffic is encrypted, and squid is lacking the proper
keys/certificates to decrypt it.
In theory, you could set up squid with its own certificates, but that
will turn squid into a man-in-the-middle, i.e. all your clients will
complain that the certificate doesn't match the sites they're trying to
access.
IOW: Just don't do it.
I'd suggest looking into browser autoconfiguration using auto.pac /
wpad.dat files.
-Stefan
_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list
