[squid-users] How to configure a transparent, pass-all, Squid proxy?

I am new to Squid and I'm trying to use it in a simple test case of a pass-all transparent proxy. My configuration is: Web-browser->Local_Server{eth0/port-443->(Transparent Proxy)->port-443/eth1}->{Internet} Squid version: 3.5.25 Below are the squid.conf file content, iptables -nvL and iptables

[squid-users] Squid not working properly ...

I have now made some changes based on suggestions from the community and would like a second look from the more experienced people. Here is my squid configuration file: visible_hostname ctct-r2 # 2) Initialize SSL database first sslcrtd_program /usr/libexec/ssl_crtd -s /var/lib/ssl

[squid-users] Transparent HTTPS Squid proxy does not work!

Let me try one more time. Here is my system configuration: {HW-Box} --> Local Server{ (eth0[port 444]) -+ | +-+ | | +-> ([3129] Transparent Squid proxy) ---> (eth1[port443]) }--+

[squid-users] Fwd: Squid does not pass HTTPS traffic transparently

Resending it without an image On Mon, Oct 16, 2023 at 1:59 PM Bud Miljkovic wrote: > Here is my system configuration > - > The setup and the problem > >- The HW box tries to establish an HTTPS transparent connection with a >server located within Internet. >- It

[squid-users] Squid 3.5.25 outgoing interface?

Does Squid have a configuration directive to forward the processed TCP traffic to one of the target's existing network interfaces? Or to put in another way, does Squid have a way to route the processed TCP traffic to one of the target's existing network interfaces, rather than to an IP address? B

Re: [squid-users] [ext] Squid quits while starting?!

Ralf.Hildebrandt wrote to *Bud Miljkovic* : > # Intercept transparent HTTPS traffic > https_port 3129 intercept ssl-bump cert=/etc/squid/ssl_cert/myCA.pem > generate-host-certificates=on dynamic_cert_mem_cache_size=4MB > ssl_bump splice all > sslcrtd_program /usr/libexec/ssl_c

[squid-users] Squid quits while starting?!

I am trying to run Squid on the `open-embedded` pyro distro on my target. Here is the `squid-ota.conf` file which is during the squid start: ``` #Visible hostname visible_hostname ctct-r2 # An ACL named 'whitelist' acl whitelist dstdomain '/etc/squid/whitelist.ota' # Allow whitelisted URLs throu

[squid-users] No valid signing SSL certificate configured for HTTPS_port

Would you know anything about this Squid problem? Given the squid-ota.conf file: ``` # An ACL named 'whitelist' acl whitelist dstdomain '/etc/squid/whitelist.ota' # Allow whitelisted URLs through http_access allow whitelist # Block the rest http_access deny all # Intercept tranparent HTTPS traff

[squid-users] How to Initialize SSL database for Squid 3.5.25

I have created the `myCA.pem` and `myCA.der` files in my Linux open embedded `pyro` distribution. How should I then configure Squid for SSL Intercept? Any clue is appreciated. Buda www.trimble.com This email may contain confidential information that is intended only for the listed recipien

[squid-users] Rebuilding Squid 3.5.25 with the `--with-openssl` option generates compilation error

Hello there, Using the *Squid 3.5.25* version from the Open Embedded *pyro* repository, I enabled the `*--with-openssl*` build option by adding the *squid_%.bbappend* file, please the attachment below. Then using *docker*, I tried to rebuild *squid* package but now I get the following compilation