Re: [squid-users] Size of icap request chanks

Thank you Amos. I'll try that! I've made an investigation here and looks like Squid 3.5.9 separates the ICAP payload on little chunks with the size of 27 bytes. This is probably a side effect of the bug 4353 / 4206 issue on the main I/O socket from the client. On a fast Squid the small input b

[squid-users] Size of icap request chanks

ip on// //icap_send_client_username on// //icap_client_username_header X-Authenticated-User// //icap_io_timeout 30 seconds// //icap_service_revival_delay 30// //adaptation_service_set ICAPSRV service_req// //adaptation_access ICAPSRV allow all/ Thank you for any your help. _ Best Regards

Re: [squid-users] ssl_bump and SNI

Hi, check something like this acl step1 at_step SslBump1 ssl_bump stare step1 all acl sslBumpDeniedDstDomain ssl::server_name google.com ssl_bump splice sslBumpDeniedDstDomain ssl_bump bump all On 5/20/2015 2:33 PM, sp_ wrote: I have tried to remove all the restrictions, but still: -SP

Re: [squid-users] ssl_bump problem with tw.bid.yahoo.com in transparent proxy

Hello Yuri, I have the same problem with transparent proxy (can't bypass bad web sites) and as I know squid guys did not fix SNI issue yet. Forward proxy works smoothly. Tell me something if I was wrong) My configuration is following: / acl step1 at_step SslBump1// //ssl_bump stare step1 all/

Re: [squid-users] Transparent proxy with Peek and Splice feature.

Any ideas, any thoughts? Thanks. 11/29/2014 6:17 AM, Amos Jeffries написав(ла): -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 28/11/2014 2:48 a.m., Vadim Rogoziansky wrote: Hello Amos. Thank you for answer. There was made an investigation related to squid's peek and splice issu

Re: [squid-users] Transparent proxy with Peek and Splice feature.

s is below: 2014/11/27 01:15:22.851| DomainData.cc(110) match: aclMatchDomainList: '212.42.77.232' NOT found Thank you guys. 11/29/2014 6:17 AM, Amos Jeffries написав(ла): -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 28/11/2014 2:48 a.m., Vadim Rogoziansky wrote: Hello Amos.

Re: [squid-users] Transparent proxy with Peek and Splice feature.

4 11:33 AM, Amos Jeffries написав(ла): -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 26/11/2014 7:22 a.m., Vadim Rogoziansky wrote: Hello All. My goal is to do ssl bumping in transparent proxy mode with domain exclude possibility. Let me tell you about squid's strange behaviour when I'm

[squid-users] Transparent proxy with Peek and Splice feature.

Hello All. My goal is to do ssl bumping in transparent proxy mode with domain exclude possibility. Let me tell you about squid's strange behaviour when I'm trying to do it. In browsers it says something like this: /This server could not prove that it is www.ukr.net; its security certificate i