Re: [squid-users] client-->iptables-->squid-proxy->another-proxy

Hi Amos. Thanks for pointing it out - but this has never been an acl-related issue, more like a https_port / ssl-bump configuration question when the upstream ssl request was not sending a "CONNECT www.example.org:443" but a "GET htttps://www.example.org". For the sake of testing one can simply ge

Re: [squid-users] wiki.squid-cache.org SSL configuration problem ...

Hi, it's been fixed last week. Thanks again for the heads-up! On Tue, Aug 8, 2017 at 9:00 PM, Francesco Chemolli wrote: > On 8 Aug 2017, at 19:06, Walter H. wrote: > > Hello, > > the intermediate certificate which is provided doen't go with the end > entitiy certificate ... > > the intermedia

Re: [squid-users] IPv6 and TPROXY

Hey Amos, Leaving aside with very old kernels, I still don't know if this setup works in the routing level not to speak about tproxy interception. The known issues are not relevant for the case if I will be able to test it and make sure the issue doesn’t apply to the latest CentOS 6 kernels. A

Re: [squid-users] Content Adaptation with HTTPs

Amos Jeffries wrote: On 20/08/17 16:05, Christopher Ahrens wrote: The current solution doesn't work for me since it only supports a very limited number of clients. I am working with a charity that provides internet services to those with impaired vision, the intention of my project was to set

Re: [squid-users] IPv6 and TPROXY

On 20/08/17 23:47, Eliezer Croitoru wrote: I am still waiting for couple answers about the system and the setup. Also to resolve the issue it will be required to know if the issue is on squid side or the kernel side(ipv6 related) or iptables rules. All of the above will allow us to help Walter m

Re: [squid-users] IPv6 and TPROXY

I am still waiting for couple answers about the system and the setup. Also to resolve the issue it will be required to know if the issue is on squid side or the kernel side(ipv6 related) or iptables rules. All of the above will allow us to help Walter make this system work. And Amos, about the pa

Re: [squid-users] client-->iptables-->squid-proxy->another-proxy

On 20/08/17 14:38, Diogenes S. Jesus wrote:> * squid.conf: --- acl localhost src 127.0.0.0/8 acl localnet src 192.168.100.0/24 192.168.101.0/24 172.16.0.0/12 acl SSL_ports port 4

Re: [squid-users] Content Adaptation with HTTPs

On 20/08/17 16:05, Christopher Ahrens wrote: The current solution doesn't work for me since it only supports a very limited number of clients. I am working with a charity that provides internet services to those with impaired vision, the intention of my project was to set up a semi-public pr