It looks like this question has come up before, but I'm hoping to get some
further details on it.
I've used a couple of firewalls (Watchguard & Fortigate) that allow me to
do a level of HTTPS site filtering without decryption. I believe that it
works by requesting and examining the certificate sen
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 18/10/2014 8:47 a.m., Luderitz Bob wrote:
> I have one central Proxy Server running Squid 3.1.10 under CentOS
> 6.3 running locally here and also for our 2 remote sites for all
> http traffic.
>
> We are using Cisco's WCCP and between the remote si
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 18/10/2014 8:38 a.m., Yassin CHOUCHANE wrote:
> Hello all, I have installed an ubuntu 14.04 x64 with squid v3.3.8,
> and i need to make sso with Windows microsoft active directory 2008
> server r2.
>
> /var/log/squid/cache.log
>
> 2014/10/13 19:
I have one central Proxy Server running Squid 3.1.10 under
CentOS 6.3 running locally here and also for our 2 remote sites for all http
traffic.
We are using Cisco's WCCP and between the remote sites and the
Squid is a ASA box.
where the Proxy is
Hello all,
I have installed an ubuntu 14.04 x64 with squid v3.3.8, and i need to make sso
with Windows microsoft active directory 2008 server r2.
so i make this :
i used the official how to here --> http://wiki.squid-cache.org/ConfigExamp …
e/Kerberos
SO after a frech install of ubuntu :
1> Pr
Markus Moeller wrote:
> >
> > Now as I run the test authenticator, what's the
> > "INFO: continuation needed"
> > message from the squid Kerberos helper? How do I interperet it? Is it
> > success or fail?
>
> That just means that the server requires more information from the client.
> This cou
On 10/17/2014 8:24 am, daniel.rie...@gmx.net wrote:
Hello,
Each of the parents are used for both HTTP & HTTPS in this
configuration, the dead parent detected log message isn't going to be
repeated twice as its one parent, Regardless of which method the
traffic
is passing.
yes, that's correc
Hello,
> Each of the parents are used for both HTTP & HTTPS in this
> configuration, the dead parent detected log message isn't going to be
> repeated twice as its one parent, Regardless of which method the traffic
> is passing.
yes, that's correct, I agree, each peer is used for both HTTP & H
On 10/17/2014 7:23 am, daniel.rie...@gmx.net wrote:
Hello,
I've testet with Squid 3.3.8 and here it is working as expected...
Thanks Amos!
squid.conf:
http_port 3128
http_access allow all
never_direct allow all
cache_peer 10.0.0.101 parent 3128 0 name=TEST1
cache_peer 10.0.0.102 parent 3128 0 n
Hello,
I've testet with Squid 3.3.8 and here it is working as expected...
Thanks Amos!
squid.conf:
http_port 3128
http_access allow all
never_direct allow all
cache_peer 10.0.0.101 parent 3128 0 name=TEST1
cache_peer 10.0.0.102 parent 3128 0 name=TEST2
HTTPS Traffic is sent to first parent (10.0
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 17/10/2014 9:47 p.m., James Harper wrote:
> > Just reading up on this, the Feature page
> > http://wiki.squid-cache.org/Features/SslPeekAndSplice says:
> >
> > "... with Squid shoveling TCP bytes back and forth without any
> > decryption"
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 17/10/2014 10:36 p.m., Ding Guigeng wrote:
> hi guys! i had install squid 3.4.7 on centos 6.5. i defined acls
> like below: acl worktime1 MTWH 8:00-12:00 acl worktime2 F
> 13:00-18:00
>
> http_access deny !worktime1 http_access deny !worktime2 http
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 17/10/2014 9:47 p.m., James Harper wrote:
> Just reading up on this, the Feature page
> http://wiki.squid-cache.org/Features/SslPeekAndSplice says:
>
> "... with Squid shoveling TCP bytes back and forth without any
> decryption"
>
> I can't see
hi guys!
i had install squid 3.4.7 on centos 6.5.
i defined acls like below:
acl worktime1 MTWH 8:00-12:00
acl worktime2 F 13:00-18:00
http_access deny !worktime1
http_access deny !worktime2
http_access allow localnet
http_access deny all
it only works at Monday to Thursday 8:00-12:00
but the cli
Just reading up on this, the Feature page
http://wiki.squid-cache.org/Features/SslPeekAndSplice says:
"... with Squid shoveling TCP bytes back and forth without any decryption"
I can't see that squid actually uses the splice() system call, so that would
mean squid would actually read the data i
I applied the patch to 3.4.8, built it and reset the cache, and now
facebook.com and youtube.com work when they caused the error before
Well done - all sorted by the looks of it :-)
Jason
On 17/10/14 05:59, Christos Tsantilas wrote:
>
> A patch for this bug attached to 4102 bug report.
> Please
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 17/10/2014 7:24 p.m., Alexander Samad wrote:
> Hi
>
> I am trying to reconfig the ssl setup on a reverse proxy set
>
> https_port 2.7.3.1:443 accel
> cert=/etc/httpd/conf.d/office.xyz.com.crt
> key=/etc/httpd/conf.d/office.xyz.com.key
> dhparams
17 matches
Mail list logo
